CVE-2013-5471

high

Description

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Global Site Selector (GSS) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuh42164.

References

http://www.securitytracker.com/id/1028985

http://www.securityfocus.com/bid/62166

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5471

http://osvdb.org/96823

Details

Source: Mitre, NVD

Published: 2013-09-05

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00184