CVE-2013-7030

moderate-risk

Published 2013-12-12

The TFTP service in Cisco Unified Communications Manager (aka CUCM or Unified CM) allows remote attackers to obtain sensitive information from a phone via an RRQ operation, as demonstrated by discovering a cleartext UseUserCredential field in an SPDefault.cnf.xml file. NOTE: the vendor reportedly disputes the significance of this report, stating that this is an expected default behavior, and that the product's documentation describes use of the TFTP Encrypted Config option in addressing this issue

Do I need to act?

17.0% chance of exploitation in next 30 days

EPSS score — higher than 83% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

30237

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.3/10 High

LOCAL / LOW complexity

Affected Products (1)

Unified Communications Manager

Affected Vendors

Cisco

References (6)

http://osvdb.org/100916

Exploit http://www.exploit-db.com/exploits/30237/

https://exchange.xforce.ibmcloud.com/vulnerabilities/89649

http://osvdb.org/100916

Exploit http://www.exploit-db.com/exploits/30237/

https://exchange.xforce.ibmcloud.com/vulnerabilities/89649

/ 100

moderate-risk

Severity 23/34 · High

Exploitability 20/34 · Moderate

Exposure 5/34 · Minimal