Arbitrary Code Execution Vulnerability in Cisco WAAS Software

Arbitrary Code Execution Vulnerability in Cisco WAAS Software

CVE-2013-3443 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The web service framework in Cisco WAAS Software 4.x and 5.x before 5.0.3e, 5.1.x before 5.1.1c, and 5.2.x before 5.2.1 in a Central Manager (CM) configuration allows remote attackers to execute arbitrary code via a crafted POST request, aka Bug ID CSCuh26626.

Learn more about our Cis Benchmark Audit For Cisco.