Lucene search
K

145 matches found

Cvelist
Cvelist
added 2025/04/02 4:16 p.m.13 views

CVE-2025-20120

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

6.1CVSS0.00301EPSS
Exploits0References1
CVE
CVE
added 2025/04/02 4:16 p.m.65 views

CVE-2025-20120

CVE-2025-20120 describes a stored cross-site scripting (XSS) vulnerability in the web-based management interfaces of Cisco’s EPNM and Prime Infrastructure. The root cause is insufficient validation of user-supplied input in the interface, allowing an unauthenticated, remote attacker to inject mal...

6.1CVSS6AI score0.00301EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/02 4:16 p.m.10 views

CVE-2025-20120

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface on an affected device. This...

6.1CVSS6AI score0.00301EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/02 12:0 a.m.4 views

Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure 跨站脚本漏洞

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure are both products of Cisco Corporation.Cisco Evolved Programmable Network Manager is a network management Cisco Prime Infrastructure is a software application that simplifies the management of wireless and wired networks...

6.1CVSS5.5AI score0.00301EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/12/04 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Evolved Programmable Network Manager (EPNM) and the Cisco Prime Infrastructure monitoring and management system allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability of the Web interface for managing Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, a system for monitoring and managing network equipment, is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allow...

5.5CVSS5.2AI score0.0027EPSS
Exploits0References3Affected Software2
Cvelist
Cvelist
added 2024/11/15 3:39 p.m.15 views

CVE-2022-20657 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an unauthenticated, remote attacker to conduct an XSS attack against a user of the interface of an affected device. This vulnerability exists because the web-based management interface does not properly...

6.1CVSS0.00496EPSS
Exploits0References1
CNVD
CNVD
added 2024/11/11 12:0 a.m.6 views

Cisco Evolved Programmable Network Manager Cross-Site Scripting Vulnerability (CNVD-2025-01394)

Cisco Evolved Programmable Network Manager is a programmable network manager. A cross-site scripting vulnerability exists in the Cisco Evolved Programmable Network Manager WEB interface, which can be exploited by a remote attacker to inject malicious script or HTML code, which can be used to obta...

5.4CVSS5.6AI score0.0027EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/08 12:0 a.m.5 views

Cisco Evolved Programmable Network Manager XSS (cisco-sa-epnmpi-sxss-yyf2zkXs)

The version of Cisco Evolved Programmable Network Manager installed on the remote host is prior to 8.0.0. It is, therefore, affected by the following: - A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated,...

5.4CVSS5.3AI score0.0027EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/06 12:0 a.m.11 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and management system, as well as the Cisco Evolved Programmable Network (EPN) Manager software, allows a perpetrator to carry out cross-site scripting attacks.

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and management system, as well as the Cisco Evolved Programmable Network EPN Manager software, exists due to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a...

4.8CVSS5.3AI score0.00358EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/02/06 12:0 a.m.7 views

The vulnerability of the command-line interface of the Cisco Prime Infrastructure monitoring and network device management system, as well as the Cisco Evolved Programmable Network (EPN) Manager software, allows a attacker to gain access to the basic operating system as a root user.

The vulnerability of the Application CLI component of the Cisco Prime Infrastructure monitoring and network management system, as well as the Cisco Evolved Programmable Network EPN Manager software, is related to the implementation or modification of arguments. Exploiting this vulnerability can...

6CVSS6.6AI score0.00175EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/01/17 5:15 p.m.4 views

CVE-2023-20271

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper validation of...

6.5CVSS5.9AI score0.00546EPSS
Exploits0References1
NVD
NVD
added 2024/01/17 5:15 p.m.25 views

CVE-2023-20260

A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper processing of command line arguments to application scripts. An...

6.7CVSS6.3AI score0.00175EPSS
Exploits0References1
CVE
CVE
added 2024/01/17 4:57 p.m.62 views

CVE-2023-20260

CVE-2023-20260 affects Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM). The root cause is improper processing of command line arguments to application scripts in the CLI, enabling an authenticated, local attacker to escalate to root privileges on the underlying OS...

6.7CVSS6.7AI score0.00175EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2024/01/17 4:57 p.m.27 views

CVE-2023-20260

A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager could allow an authenticated, local attacker to gain escalated privileges. This vulnerability is due to improper processing of command line arguments to application scripts. An...

6CVSS7AI score0.00175EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/17 4:56 p.m.4 views

CVE-2023-20271

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper validation of...

6.5CVSS6.6AI score0.00546EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.3 views

Cisco Prime Infrastructure Security Vulnerability

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the presence of multiple...

4.8CVSS7.3AI score0.00358EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/01/11 12:0 a.m.3 views

Cisco Evolved Programmable Network Manager Security Vulnerability

Cisco Evolved Programmable Network Manager is a network management solution from Cisco. A security vulnerability exists in Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure, which stems from the existence of multiple vulnerabilities that could allow an attacker to...

6.7CVSS7.3AI score0.00175EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/01/10 12:0 a.m.4 views

PT-2024-1486 · Cisco · Cisco Prime Infrastructure +1

Name of the Vulnerable Software and Affected Versions: Cisco Prime Infrastructure versions affected versions not specified Cisco Evolved Programmable Network EPN Manager versions affected versions not specified Description: The issue is related to improper processing of objects in memory,...

7.7CVSS7.2AI score0.00695EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/01/10 12:0 a.m.4 views

PT-2024-1485 · Cisco · Cisco Prime Infrastructure +1

Name of the Vulnerable Software and Affected Versions: Cisco Prime Infrastructure affected versions not specified Cisco Evolved Programmable Network EPN Manager affected versions not specified Description: A vulnerability in the web-based management interface could allow an authenticated, remote...

4.8CVSS4.8AI score0.00358EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2023/11/15 12:0 a.m.4 views

VulnCheck KEV: CVE-2019-1821

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network EPN Manager could allow an authenticated, remote attacker to execute code with root-level privileges on the underlying operating system. This vulnerability exist...

10CVSS7.5AI score0.98092EPSS
Exploits12References1
Rows per page
Query Builder