Lucene search
+L
CiscoPrime Lan Management Solution

8 matches found

CVE
CVE
added 2013/04/29 9:0 p.m.67 views

CVE-2013-1196

The CVE-2013-1196 entry involves multiple Cisco products (ACS, Identity Services Engine, ANM, LMS, Prime NSM/DCNM, Quad, etc.) where the command-line interface does not properly validate input, allowing local users to obtain root privileges via unspecified vectors. Connected documents corroborate...

6.8CVSS6.3AI score0.003EPSS
CVE
CVE
added 2013/01/17 3:0 p.m.66 views

CVE-2012-6392

CVE-2012-6392 affects Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux. The vulnerability arises because LMS does not properly validate authentication and authorization requests in TCP sessions, allowing remote attackers to execute arbitrary commands via a crafted session (por...

10CVSS7.7AI score0.04635EPSS
CVE
CVE
added 2013/02/19 11:0 p.m.66 views

CVE-2013-1125

Summary: CVE-2013-1125 affects Cisco Identity Services Engine Software, Secure Access Control System (ACS), Application Networking Manager (ANM), Prime LAN Management Solution (LMS), Prime Network Control System, Quad, Context Directory Agent, Prime Collaboration, Unified Provisioning Manager, an...

6.8CVSS6.3AI score0.003EPSS
CVE
CVE
added 2017/09/07 9:0 p.m.53 views

CVE-2017-12225

CVE-2017-12225 affects Cisco Prime LAN Management Solution (LMS) session handling. The issue arises from reusing a preauthentication session token in the postauthentication flow, allowing an authenticated remote attacker to hijack another user’s administrative session (Session Fixation). Affected...

6.5CVSS6.4AI score0.01961EPSS
CVE
CVE
added 2015/02/27 2:0 a.m.49 views

CVE-2015-0594

Cisco Common Services (used by Cisco Prime LAN Management Solution and Cisco Security Manager) contains cross-site scripting (XSS) vulnerabilities in the help pages. The root cause is insufficient input validation of some parameters used by the help page system, allowing remote attackers to trigg...

4.3CVSS5.9AI score0.01792EPSS
CVE
CVE
added 2016/03/12 2:0 a.m.49 views

CVE-2016-1360

Cisco Prime LAN Management Solution (LMS)

7.1CVSS6.6AI score0.00305EPSS
CVE
CVE
added 2013/09/12 1:0 a.m.48 views

CVE-2013-5488

Cisco Common Services (used in Cisco Prime LMS, Cisco Security Manager, Cisco Unified Service Monitor, and Cisco Unified Operations Manager) fails to properly interact with ActiveMQ, allowing an unauthenticated remote attacker to cause memory-based DoS by opening multiple concurrent TCP sessions....

5CVSS6.8AI score0.0157EPSS
CVE
CVE
added 2013/09/13 10:0 a.m.43 views

CVE-2013-5482

Cisco Prime LMS is affected by a cross-frame scripting (XFS) vulnerability caused by improper handling of IFRAMEs, due to insufficient input filtering. The issue enables a remote attacker to expose users to clickjacking and related client-side attacks via a crafted page. Remediation is available ...

4.3CVSS6.5AI score0.01169EPSS