CVE-2022-20657 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability

🗓️ 15 Nov 2024 15:39:33Reported by ciscoType

Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager XSS Vulnerabilit

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and management system, as well as the Cisco Evolved Programmable Network Manager software for managing network services, allows a perpetrator to carry out cross-site scripting attacks.	1 Feb 202200:00	–	bdu_fstec
Cisco	Cisco Prime Infrastructure and Evolved Programmable Network Manager Vulnerabilities	12 Jan 202216:00	–	cisco
CNNVD	Cisco Prime Infrastructure 和 Evolved Programmable Network Manager 跨站脚本漏洞	12 Jan 202200:00	–	cnnvd
CVE	CVE-2022-20657	15 Nov 202415:39	–	cve
EUVD	EUVD-2022-25907	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Cisco products	13 Jan 202200:00	–	ncsc
NVD	CVE-2022-20657	15 Nov 202416:15	–	nvd
OSV	CVE-2022-20657	15 Nov 202416:15	–	osv
Positive Technologies	PT-2022-1421 · Cisco · Cisco Prime Infrastructure +1	12 Jan 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-20657	22 May 202521:50	–	redhatcve

[
  {
    "vendor": "Cisco",
    "product": "Cisco Evolved Programmable Network Manager (EPNM)",
    "versions": [
      {
        "version": "3.0.1",
        "status": "affected"
      },
      {
        "version": "3.1.2",
        "status": "affected"
      },
      {
        "version": "1.2",
        "status": "affected"
      },
      {
        "version": "3.1.1",
        "status": "affected"
      },
      {
        "version": "3.1.3",
        "status": "affected"
      },
      {
        "version": "3.1",
        "status": "affected"
      },
      {
        "version": "3.0.3",
        "status": "affected"
      },
      {
        "version": "3.0.2",
        "status": "affected"
      },
      {
        "version": "3.0",
        "status": "affected"
      },
      {
        "version": "2.2",
        "status": "affected"
      },
      {
        "version": "1.1",
        "status": "affected"
      },
      {
        "version": "2.1",
        "status": "affected"
      },
      {
        "version": "2.0",
        "status": "affected"
      },
      {
        "version": "4.1",
        "status": "affected"
      },
      {
        "version": "4.1.1",
        "status": "affected"
      },
      {
        "version": "4.0.3",
        "status": "affected"
      },
      {
        "version": "4.0.1",
        "status": "affected"
      },
      {
        "version": "4.0.2",
        "status": "affected"
      },
      {
        "version": "4.0",
        "status": "affected"
      },
      {
        "version": "5.0",
        "status": "affected"
      },
      {
        "version": "5.0.1",
        "status": "affected"
      },
      {
        "version": "5.1.1",
        "status": "affected"
      },
      {
        "version": "5.1",
        "status": "affected"
      },
      {
        "version": "5.0.2",
        "status": "affected"
      },
      {
        "version": "5.1.2",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Cisco",
    "product": "Cisco Prime Infrastructure",
    "versions": [
      {
        "version": "3.0.0",
        "status": "affected"
      },
      {
        "version": "3.1.0",
        "status": "affected"
      },
      {
        "version": "3.1.5",
        "status": "affected"
      },
      {
        "version": "2.1",
        "status": "affected"
      },
      {
        "version": "2.0.0",
        "status": "affected"
      },
      {
        "version": "3.6.0",
        "status": "affected"
      },
      {
        "version": "3.7.0",
        "status": "affected"
      },
      {
        "version": "3.4.0",
        "status": "affected"
      },
      {
        "version": "3.3.0",
        "status": "affected"
      },
      {
        "version": "3.2",
        "status": "affected"
      },
      {
        "version": "3.5.0",
        "status": "affected"
      },
      {
        "version": "3.2.0-FIPS",
        "status": "affected"
      },
      {
        "version": "2.2",
        "status": "affected"
      },
      {
        "version": "3.8.0-FED",
        "status": "affected"
      },
      {
        "version": "3.9.0",
        "status": "affected"
      },
      {
        "version": "3.8.0",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-path-trav-zws324yn

15 Nov 2024 15:39Current

CVSS 3.16.1

EPSS0.00242