var-201302-0393
Vulnerability from variot
Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.0 allows remote attackers to cause a denial of service (CPU consumption and monitoring outage) via malformed TLS messages to TCP port (1) 9043 or (2) 9443, aka Bug ID CSCuc07155. Successfully exploiting this issue allows remote attackers to consume excessive CPU resources, potentially denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCuc07155. Cisco Prime Central for HCS Assurance 8.6 and 9.0 are vulnerable. The platform provides functions such as secure access authentication and real-time fault analysis
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201302-0393",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "prime central for hosted collaboration solution assurance",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.6"
},
{
"model": "prime central for hosted collaboration solution assurance",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "9.0"
},
{
"model": "prime central for hcs assurance",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "8.6"
},
{
"model": "prime central for hcs assurance",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "9.0"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:cisco:prime_central_for_hosted_collaboration_solution_assurance",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco",
"sources": [
{
"db": "BID",
"id": "58206"
}
],
"trust": 0.3
},
"cve": "CVE-2013-1135",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"id": "CVE-2013-1135",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 8.6,
"id": "VHN-61137",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2013-1135",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2013-1135",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201302-603",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-61137",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61137"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance 8.6 and 9.0 allows remote attackers to cause a denial of service (CPU consumption and monitoring outage) via malformed TLS messages to TCP port (1) 9043 or (2) 9443, aka Bug ID CSCuc07155. \nSuccessfully exploiting this issue allows remote attackers to consume excessive CPU resources, potentially denying service to legitimate users. \nThis issue is being tracked by Cisco Bug ID CSCuc07155. \nCisco Prime Central for HCS Assurance 8.6 and 9.0 are vulnerable. The platform provides functions such as secure access authentication and real-time fault analysis",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-1135"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "BID",
"id": "58206"
},
{
"db": "VULHUB",
"id": "VHN-61137"
}
],
"trust": 1.98
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2013-1135",
"trust": 2.8
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603",
"trust": 0.7
},
{
"db": "CISCO",
"id": "20130227 CISCO PRIME CENTRAL FOR HOSTED COLLABORATION SOLUTION ASSURANCE EXCESSIVE CPU UTILIZATION VULNERABILITY",
"trust": 0.6
},
{
"db": "BID",
"id": "58206",
"trust": 0.4
},
{
"db": "VULHUB",
"id": "VHN-61137",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61137"
},
{
"db": "BID",
"id": "58206"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"id": "VAR-201302-0393",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-61137"
}
],
"trust": 0.01
},
"last_update_date": "2024-11-23T22:13:53.630000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20130227-hcs",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130227-hcs"
},
{
"title": "Cisco Prime Central for Hosted Collaboration Solution Assurance Excessive CPU Utilization Issue",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1135"
},
{
"title": "cisco-sa-20130227-hcs",
"trust": 0.8,
"url": "http://www.cisco.com/cisco/web/support/JP/111/1117/1117489_cisco-sa-20130227-hcs-j.html"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61137"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20130227-hcs"
},
{
"trust": 1.1,
"url": "http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2013-1135"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1135"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1135"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/en/us/products/ps12491/index.html"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61137"
},
{
"db": "BID",
"id": "58206"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-61137"
},
{
"db": "BID",
"id": "58206"
},
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-02-27T00:00:00",
"db": "VULHUB",
"id": "VHN-61137"
},
{
"date": "2013-02-27T00:00:00",
"db": "BID",
"id": "58206"
},
{
"date": "2013-03-01T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"date": "2013-02-28T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"date": "2013-02-27T21:55:04.230000",
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-03-23T00:00:00",
"db": "VULHUB",
"id": "VHN-61137"
},
{
"date": "2013-02-27T00:00:00",
"db": "BID",
"id": "58206"
},
{
"date": "2013-04-10T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2012-005960"
},
{
"date": "2013-03-05T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201302-603"
},
{
"date": "2024-11-21T01:48:58.167000",
"db": "NVD",
"id": "CVE-2013-1135"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Prime Central for HCS Assurance Service disruption in (DoS) Vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2012-005960"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "input validation",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201302-603"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…