VYPR
Unrated severityNVD Advisory· Published Nov 18, 2013· Updated Jun 16, 2026

CVE-2013-3407

CVE-2013-3407

Description

The web interface in Cisco Server Provisioner 6.4.0 Patch 5-1301292331 and earlier does not require authentication for unspecified pages, which allows remote attackers to obtain sensitive information via a direct request, aka Bug ID CSCug65664.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • cpe:2.3:a:cisco:server_provisioner:6.3.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:cisco:server_provisioner:6.3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:server_provisioner:6.4.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:server_provisioner:6.4.0:patch_1204040128:*:*:*:*:*:*
    • cpe:2.3:a:cisco:server_provisioner:6.4.0:patch_2-1112122225:*:*:*:*:*:*
    • cpe:2.3:a:cisco:server_provisioner:6.4.0:patch_3-1208021049:*:*:*:*:*:*
    • cpe:2.3:a:cisco:server_provisioner:*:patch_5-1301292331:*:*:*:*:*:*range: <=6.4.0
    • (no CPE)range: <= 6.4.0 Patch 5-1301292331

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.