CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
72.9%
Cisco
Prime Network Control System NCS appliances that are running software
versions prior to 1.1.2 contain a database user account that is
created with default credentials. An attacker could use this account to
modify the configuration of the application or disrupt services.
Cisco has released software updates that address these vulnerabilities. There is no workaround for these vulnerabilities.
This advisory is available at the following link:
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | prime_network_control_system | any | cpe:2.3:a:cisco:prime_network_control_system:any:*:*:*:*:*:*:* |