Lucene search
K

133 matches found

CNNVD
CNNVD
added 2022/01/12 12:0 a.m.4 views

Cisco Prime Infrastructure 和 Evolved Programmable Network Manager 跨站脚本漏洞

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure are both products of Cisco Corporation.Cisco Evolved Programmable Network Manager is a network management Cisco Prime Infrastructure is a software application. Cisco Prime Infrastructure is a software application used to...

6.1CVSS5.7AI score0.00496EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/12/13 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and management system, as well as the Cisco Evolved Programmable Network Manager (EPNM), allows a perpetrator to execute arbitrary code and gain access to protected information.

The vulnerability of the web interface for managing Cisco Prime Infrastructure network equipment and the Cisco Evolved Programmable Network Manager software relates to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a malicious actor to execute...

6.4CVSS6.3AI score0.0058EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2021/11/04 4:15 p.m.16 views

Cross site scripting

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

3.5CVSS5.3AI score0.0058EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/11/04 3:40 p.m.27 views

CVE-2021-34784 Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

5.4CVSS5.4AI score0.0058EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/11/04 3:40 p.m.16 views

CVE-2021-34784 Cisco Prime Infrastructure and Evolved Programmable Network Manager Stored Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the web-based management interface of an...

5.4CVSS5.8AI score0.0058EPSS
Exploits0References1
NCSC
NCSC
added 2021/09/02 12:0 a.m.5 views

Vulnerability fixed in Cisco Prime Infrastructure and Evolved Programmable Network Manager

Cisco has fixed a vulnerability in Prime Infrastructure and Evolved Programmable Network Manager. An authenticated malicious person with access to the command-line interface could exploit the exploit the vulnerability to gain access to sensitive information. Cisco has released updates to fix the...

5.5CVSS7AI score0.00225EPSS
Exploits0
CNNVD
CNNVD
added 2021/09/01 12:0 a.m.3 views

Cisco Prime Infrastructure信息泄露漏洞

Cisco Prime Infrastructure is a software application from Cisco USA. It is used to simplify the management of wireless and wired networks. An information disclosure vulnerability exists in Cisco Prime Infrastructure and Evolved Programmable Network Manager, which stems from a vulnerability in the...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2021/08/13 12:0 a.m.34 views

Cisco Evolved Programmable Network Manager Information Disclosure (cisco-sa-epnm-info-disc-PjTZ5r6C)

An information disclosure vulnerability exists in Cisco Evolved Programmable Network Manager. An authenticated, remote attacker can exploit this, by sending a specific API request to the affected application, to disclose potentially sensitive information about the application. Please see the...

6.5CVSS6.5AI score0.01095EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/08/04 5:20 p.m.18 views

CVE-2021-34707 Cisco Evolved Programmable Network Manager Sensitive Information Disclosure Vulnerability

A vulnerability in the REST API of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to access sensitive data on an affected system. This vulnerability exists because the application does not sufficiently protect sensitive data when responding to an API...

6.5CVSS6.4AI score0.01095EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2021/08/04 5:20 p.m.9 views

CVE-2021-34707 Cisco Evolved Programmable Network Manager Sensitive Information Disclosure Vulnerability

A vulnerability in the REST API of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to access sensitive data on an affected system. This vulnerability exists because the application does not sufficiently protect sensitive data when responding to an API...

6.5CVSS6.2AI score0.01095EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/05/24 12:0 a.m.7 views

The vulnerability of the Cisco Prime Infrastructure monitoring and management system, the Cisco Evolved Programmable Network (EPN) Manager software for managing network services, and the Cisco Identity Services Engine platform for managing connection policies arises from improper external control of file names or paths. This allows attackers to write arbitrary files.

The vulnerability of the Cisco Prime Infrastructure monitoring and management system, the Cisco Evolved Programmable Network EPN Manager software for managing network services, and the Cisco Identity Services Engine connection policy management platform are related to improper external manipulati...

4.4CVSS5.5AI score0.00212EPSS
Exploits0References2Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/12/09 12:0 a.m.7 views

The vulnerability of the REST API interface of the Cisco Prime Infrastructure monitoring and network equipment management system, as well as the Cisco Evolved Programmable Network Manager (EPNM) software for managing network services, allows a perpetrator to escalate their privileges and execute arbitrary code.

The vulnerability of the REST API interface of the Cisco Prime Infrastructure monitoring and network equipment management system, as well as the Cisco Evolved Programmable Network Manager EPNM software for managing network services, is related to insufficient validation of input data. Exploiting...

8.1CVSS7.8AI score0.03286EPSS
Exploits1References3Affected Software2
NVD
NVD
added 2019/11/26 3:15 a.m.28 views

CVE-2019-15958

A vulnerability in the REST API of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an unauthenticated remote attacker to execute arbitrary code with root privileges on the underlying operating system. The vulnerability is due to insufficient input...

10CVSS8.9AI score0.03286EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2019/11/26 3:11 a.m.16 views

CVE-2019-15958 Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerability

A vulnerability in the REST API of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an unauthenticated remote attacker to execute arbitrary code with root privileges on the underlying operating system. The vulnerability is due to insufficient input...

8.1CVSS8AI score0.03286EPSS
Exploits1References1
Cisco
Cisco
added 2019/11/06 4:0 p.m.67 views

Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerability

A vulnerability in the REST API of Cisco Prime Infrastructure PI and Cisco Evolved Programmable Network Manager EPNM could allow an unauthenticated remote attacker to execute arbitrary code with root privileges on the underlying operating system. The vulnerability exists because affected devices...

9.8CVSS2.5AI score0.03286EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/06/21 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and network device management system, as well as the Cisco Evolved Programmable Network (EPN) Manager software, relates to errors in handling HTTP requests. This vulnerability allows an attacker to gain access to protected information.

The vulnerability of the web interface for managing Cisco Prime Infrastructure network equipment and the Cisco Evolved Programmable Network EPN Manager software relates to errors in handling HTTP requests. Exploiting this vulnerability can allow a malicious actor to gain access to protected...

6.5CVSS5.5AI score0.13856EPSS
Exploits1References4Affected Software2
Check Point Advisories
Check Point Advisories
added 2019/06/20 12:0 a.m.56 views

Cisco Multiple Products Remote Code Execution (CVE-2019-1821)

A remote code execution vulnerability exists in the web based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager. A remote unauthenticated attacker could exploit this vulnerability to execute code with root level privileges on the target system...

10CVSS3.7AI score0.98092EPSS
Exploits12
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.7 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and network device management system, as well as the Cisco Evolved Programmable Network Manager software, allows a malicious actor to execute arbitrary code with root privileges.

The vulnerability of the web-based administration interface of the Cisco Prime Infrastructure monitoring and network management system, as well as the Cisco Evolved Programmable Network Manager software, is related to incorrect data input validation. Exploiting this vulnerability could allow an...

10CVSS8.2AI score0.98092EPSS
Exploits12References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.6 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and network device management system, as well as the Cisco Evolved Programmable Network Manager software, allows a malicious actor to execute arbitrary code with root privileges.

The vulnerability of the Web interface of the Cisco Prime Infrastructure software for managing network life cycles and the Cisco Evolved Programmable Network Manager software for managing network services is related to incorrect data input validation. Exploiting this vulnerability could allow a...

9.8CVSS7.8AI score0.04415EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2019/05/31 12:0 a.m.5 views

The vulnerability in the web interface of the Cisco Prime Infrastructure monitoring and network device management system, as well as the Cisco Evolved Programmable Network Manager software, allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing Cisco Prime Infrastructure network equipment and the Cisco Evolved Programmable Network Manager software relates to input validation errors. Exploiting this vulnerability allows an attacker to execute arbitrary SQL queries by sending specially...

8.5CVSS7.9AI score0.01901EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder