Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote attacker to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NCisco Prime Infrastructure
APPCisco3.83.8.13.93.9.1≤ 3.73.10 – 3.10.2 (bez)
Related vulnerabilities
A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Mana...
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory pe...
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote ...
The API in Cisco Prime Infrastructure 1.2 through 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allo...
Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allo...