Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco prime infrastructure vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv2
CVE-2017-3869
An API Credentials Management vulnerability in the APIs for Cisco Prime Infrastructure could allow an authenticated, remote malicious user to access an API that should be restricted to a privileged user. The attacker needs to have valid credentials. More Information: CSCuy36192. ...
Cisco Prime Infrastructure 3.1\\(1\\)
3.5
CVSSv2
CVE-2018-0482
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is d...
Cisco Prime Infrastructure 3.5\\(0.0\\)
4.3
CVSSv2
CVE-2017-6699
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an unauthenticated, remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based ...
Cisco Prime Infrastructure 3.1
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45b\\)
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45d\\)
Cisco Prime Infrastructure 3.1\\(0.128\\)
Cisco Prime Infrastructure 3.1.1
Cisco Evolved Programmable Network Manager 2.0.0
5.5
CVSSv2
CVE-2017-6698
A vulnerability in the Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) SQL database interface could allow an authenticated, remote malicious user to impact the confidentiality and integrity of the application by executing arbitrary SQL queries, aka...
Cisco Prime Infrastructure 2.0\\(4.0.45b\\)
Cisco Prime Infrastructure 3.1\\(1\\)
4.3
CVSSv2
CVE-2017-6700
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an unauthenticated, remote malicious user to conduct a Document Object Model (DOM) based (environment or client-side) cross-site sc...
Cisco Prime Infrastructure 3.1\\(1\\)
Cisco Prime Infrastructure 2.0\\(4.0.45b\\)
10
CVSSv2
CVE-2018-0258
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote malicious user to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following pr...
Cisco Prime Data Center Network Manager 10.0\\(1\\)
Cisco Prime Data Center Network Manager 10.2\\(1\\)
Cisco Prime Infrastructure 3.3\\(0.0\\)
1 Article
5.8
CVSSv2
CVE-2018-0097
A vulnerability in the web interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page, aka an Open Redirect. The vulnerability is due to improper input validation of the parameters in the HTTP request. ...
Cisco Prime Infrastructure
4.3
CVSSv2
CVE-2019-1643
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected software. The vulnerabilit...
Cisco Prime Infrastructure 3.2.0
4
CVSSv2
CVE-2018-15432
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit...
Cisco Prime Infrastructure 3.2
4
CVSSv2
CVE-2018-15433
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to the transmission of sensitive information as part of a GET request. An attacker could exploit...
Cisco Prime Infrastructure 3.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »