Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco prime infrastructure 1.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-7853
The datalen parameter in the refclock driver in NTP 4.2.x prior to 4.2.8p4, and 4.3.x prior to 4.3.77 allows remote malicious users to execute arbitrary code or cause a denial of service (crash) via a negative input value.
Ntp Ntp
Ntp Ntp 4.2.8
Netapp Oncommand Balance -
Netapp Oncommand Performance Manager -
Netapp Oncommand Unified Manager -
Netapp Clustered Data Ontap -
Netapp Data Ontap -
8
CVSSv3
CVE-2017-6662
A vulnerability in the web-based user interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker read and write access to information stored in the affected system as well as perform remote code execu...
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 2.0.0
Cisco Prime Infrastructure 3.1
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 3.1\\(0.128\\)
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.1\\(4.0\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 3.1.1
Cisco Prime Infrastructure 2.2\\(3\\)
Cisco Prime Infrastructure 3.0
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45d\\)
Cisco Evolved Programmable Network Manager 1.2.500
7.5
CVSSv3
CVE-2015-7848
An integer overflow can occur in NTP-dev.4.3.70 leading to an out-of-bounds memory copy operation when processing a specially crafted private mode packet. The crafted packet needs to have the correct message authentication code and a valid timestamp. When processed by the NTP dae...
Ntp Ntp-dev 4.3.70
8.8
CVSSv3
CVE-2016-6443
A vulnerability in the Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL database interface could allow an authenticated, remote malicious user to impact system confidentiality by executing a subset of arbitrary SQL queries that can cause product instability...
Cisco Evolved Programmable Network Manager 2.0
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 3.1.1
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 2.2
Cisco Evolved Programmable Network Manager 1.2
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 3.1
8.8
CVSSv3
CVE-2016-1408
Cisco Prime Infrastructure 1.2 up to and including 3.1 and Evolved Programmable Network Manager (EPNM) 1.2 and 2.0 allow remote authenticated users to execute arbitrary commands or upload files via a crafted HTTP request, aka Bug ID CSCuz01488.
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.1.0
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Evolved Programmable Network Manager 1.2.1.3
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Evolved Programmable Network Manager 1.2.500
Cisco Evolved Programmable Network Manager 1.2.400
9.8
CVSSv3
CVE-2016-1289
The API in Cisco Prime Infrastructure 1.2 up to and including 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote malicious users to execute arbitrary code or obtain sensitive management information via a crafted HTTP request, as demonstrated by discovering mana...
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.2
Cisco Evolved Programmable Network Manager 1.2.0
8.8
CVSSv3
CVE-2016-1406
The API web interface in Cisco Prime Infrastructure prior to 3.1 and Cisco Evolved Programmable Network Manager prior to 1.2.4 allows remote authenticated users to bypass intended RBAC restrictions and obtain sensitive information, and consequently gain privileges, via crafted JS...
Cisco Evolved Programmable Network Manager 1.2.1.3
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 1.4
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.2
8.1
CVSSv3
CVE-2016-1290
The web API in Cisco Prime Infrastructure 1.2.0 up to and including 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern ...
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Prime Infrastructure 2.2\\\\\\(2\\\\\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.3
9.8
CVSSv3
CVE-2016-1291
Cisco Prime Infrastructure 1.2.0 up to and including 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote malicious users to execute arbitrary code via crafted deserialized data in an HTTP POST request, aka Bug ID CSCuw03192.
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.2
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Prime Infrastructure 2.2\\\\\\(2\\\\\\)
Cisco Prime Infrastructure 2.1.0
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.2.1
7.5
CVSSv3
CVE-2015-3193
The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 prior to 1.0.2e on the x86_64 platform, as used by the BN_mod_exp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote malicious users to obt...
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.2
Openssl Openssl 1.0.2d
Nodejs Node.js
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 15.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »