CVE-2013-3472

Cross-site request forgery (CSRF) vulnerability in the Enterprise License Manager (ELM) in Cisco Unified Communications Manager (CM) allows remote attackers to hijack the authentication of arbitrary users for requests that make ELM modifications, aka Bug ID CSCui58210.

Published: Aug 29, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-3472
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
cisco / unified_communications_manager	-	-

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3472
http://www.securitytracker.com/id/1028963

Vulnerability Database

289,599

CVE-2013-3472