CVE-2013-3431

Name of the Vulnerable Software and Affected Versions Cisco Video Surveillance Manager (VSM) versions prior to 7.0.0

Description The issue allows remote attackers to obtain sensitive configuration, archive, and log information without requiring authentication for access to VSMC monitoring pages. This is related to the Cisco VSBWT package.

Recommendations For versions prior to 7.0.0, update to version 7.0.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the VSMC monitoring pages until a patch is available.