CVE-2013-3443

critical Cisco
CVSS v3 Base Score
10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS Score
7.9%
Exploitation probability in 30 days
Top 8% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: August 1, 2013 (4668 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

The web service framework in Cisco WAAS Software 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c, and 5.2.x before 5.2.1 in a Central Manager (CM) configuration allows remote attackers to execute arbitrary code via a crafted POST request, aka Bug ID CSCuh26626.

CWE

CWE-20

Affected Products

cisco wide area application services

References

🔗 osvdb.org 🔗 secunia.com 🔗 secunia.com 🔗 tools.cisco.com 🔗 www.securityfocus.com