Application Policy Infrastructure Controller Enterprise Module Security Vulnerabilities and Issues — Application Policy Infrastructure Controller Enterprise Module CVE List

Lucene search

CiscoApplication Policy Infrastructure Controller Enterprise Module

5 matches found

CVE•added 2016/01/26 5:59 a.m.•41 views

CVE-2015-6337

Cross-site scripting (XSS) vulnerability in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0.10 allows remote attackers to inject arbitrary web script or HTML via a crafted hostname in an SNMP response, aka Bug ID CSCuw47238.

6.1CVSS5.9AI score0.0025EPSS

CVE•added 2016/04/28 10:59 p.m.•39 views

CVE-2016-1386

The API in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0(1) allows remote attackers to spoof administrative notifications via crafted attribute-value pairs, aka Bug ID CSCux15521.

7.5CVSS7.4AI score0.00235EPSS

CVE•added 2016/02/07 11:59 a.m.•36 views

CVE-2016-1305

Cross-site scripting (XSS) vulnerability in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.1 allows remote attackers to inject arbitrary web script or HTML via vectors involving HTML entities, aka Bug ID CSCux15511.

6.1CVSS5.9AI score0.0025EPSS

CVE•added 2016/02/09 3:59 a.m.•34 views

CVE-2016-1318

6.1CVSS6AI score0.0025EPSS

CVE•added 2016/08/18 7:59 p.m.•34 views

CVE-2016-1365

The Grapevine update process in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0 allows remote authenticated users to execute arbitrary commands as root via a crafted upgrade parameter, aka Bug ID CSCux15507.

8.8CVSS8.6AI score0.00985EPSS