Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco prime infrastructure - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6262
Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) and 2.0(0.0) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug IDs CSCum49054 and CSCum49059.
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
6.1
CVSSv3
CVE-2017-3848
A vulnerability in the HTTP web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface of the affected system. More Information: CSCuw63001 C...
Cisco Prime Infrastructure 2.2(2)
Cisco Prime Infrastructure 3.0
NA
CVE-2014-8007
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code of the Quick Discovery options page, aka Bug ID CSCum00019.
Cisco Prime Infrastructure -
8.8
CVSSv3
CVE-2016-1359
Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mishandled during viewing of a log file, aka Bug ID CSCuw81494.
Cisco Prime Infrastructure 3.0
NA
CVE-2015-6332
Cisco Prime Infrastructure 2.2 allows remote malicious users to cause a denial of service (daemon hang) by sending many SSL renegotiation requests, aka Bug ID CSCuv56830.
Cisco Prime Infrastructure 2.2
6.1
CVSSv3
CVE-2015-6434
Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka Bug...
Cisco Prime Infrastructure 2.2(2)
4.3
CVSSv3
CVE-2016-1474
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, ...
Cisco Prime Infrastructure 2.2(2)
NA
CVE-2014-2147
The web interface in Cisco Prime Infrastructure 2.1 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "c...
Cisco Prime Infrastructure
NA
CVE-2014-2153
Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in Cisco Prime Infrastructure allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun21869.
Cisco Prime Infrastructure -
NA
CVE-2014-2152
Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCun21868.
Cisco Prime Infrastructure -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »