Directory Enumeration Vulnerability in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance

Directory Enumeration Vulnerability in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance

CVE-2013-3398 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The web framework in Cisco Prime Central for Hosted Collaboration Solution (HCS) Assurance provides different responses to requests for arbitrary pathnames depending on whether the pathname exists, which allows remote attackers to enumerate directories and files via a series of crafted requests, aka Bug ID CSCuh64574.

Learn more about our Cis Benchmark Audit For Cisco.