2 matches found
CVE-2016-1290
The CVE-2016-1290 issue affects Cisco Prime Infrastructure 1.2.0–2.2(2) and Cisco EPNM 1.2. The vulnerability stems from the web API allowing an authenticated remote user to bypass RBAC via an HTTP request that does not conform to a pattern filter, enabling elevated privileges (Bug CSCuy10227). P...
CVE-2016-1290
The web API in Cisco Prime Infrastructure 1.2.0 through 2.22 and Cisco Evolved Programmable Network Manager EPNM 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227...