CVE-2012-1348

Cisco Wide Area Application Services (WAAS) appliances with software 4.4, 5.0, and 5.1 include a one-way hash of a password within output text, which might allow remote attackers to obtain sensitive information via a brute-force attack on the hash string, aka Bug ID CSCty17279.

Published: Aug 6, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-1348
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
cisco / wide_area_application_services	4.4	4.4.x
cisco / wide_area_application_services	5.1	5.1.x
cisco / wide_area_application_services	5.0	5.0.x

http://www.cisco.com/en/US/docs/app_ntwk_services/waas/waas/v501/release/notes/ws501xrn.pdf

Vulnerability Database

290,206

CVE-2012-1348