VIR Vulnerability Intelligence Relay

CVE-2013-1170

high
Published 2013-04-11 · Modified 2026-04-29
CVSS v3
VIR risk
7.5

Description

The Cisco Prime Network Control System (NCS) appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service (service disruption) via unspecified vectors, aka Bug ID CSCtz30468.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact
VendorProductVersionsFixed
cisco ciscoprime_network_control_system_software1.1
cisco ciscoprime_network_control_system-

References

CWEs

CWE-255

💬 Discuss CVE-2013-1170 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.