Prime Infrastructure Security Vulnerabilities and Issues — Prime Infrastructure CVE List

Lucene search

CiscoPrime Infrastructure

3 matches found

CVE•added 2015/02/12 1:59 a.m.•44 views

CVE-2014-2147

The web interface in Cisco Prime Infrastructure 2.1 and earlier does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka B...

4.3CVSS6.5AI score0.00422EPSS

CVE•added 2015/02/12 1:59 a.m.•42 views

CVE-2014-2152

Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCun21868.

6.8CVSS7.4AI score0.00173EPSS

CVE•added 2015/02/12 1:59 a.m.•40 views

CVE-2014-2153

Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in Cisco Prime Infrastructure allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun21869.

4.3CVSS5.9AI score0.00256EPSS