2 matches found
Cisco Prime Infrastructure and EPNM multiple functions Cross Site Scripting (CVE-2017-6699)
A reflected cross-site scripting vulnerability has been reported in Cisco Prime Infrastructure and Evolved Programmable Network Manager. The vulnerability is due to insufficient validation of some request parameters in jsp functions. A remote user can exploit this vulnerability by enticing a targ...
CVE-2017-6699
CVE-2017-6699 affects Cisco Prime Infrastructure (PI) and EPNM web-based management interfaces. Affected component: JSP-based web UI; root cause: insufficient validation of user-supplied input, enabling a remote, unauthenticated attacker to trigger a reflected cross-site scripting (XSS) attack by...