Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prime infrastructure vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-1442
The administrative web interface in Cisco Prime Infrastructure (PI) prior to 3.1.1 allows remote authenticated users to execute arbitrary commands via crafted field values, aka Bug ID CSCuy96280.
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
6.1
CVSSv3
CVE-2017-3848
A vulnerability in the HTTP web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface of the affected system. More Information: CSCuw63001 C...
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 3.0
NA
CVE-2014-8007
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code of the Quick Discovery options page, aka Bug ID CSCum00019.
Cisco Prime Infrastructure -
NA
CVE-2015-6332
Cisco Prime Infrastructure 2.2 allows remote malicious users to cause a denial of service (daemon hang) by sending many SSL renegotiation requests, aka Bug ID CSCuv56830.
Cisco Prime Infrastructure 2.2
8.8
CVSSv3
CVE-2016-1359
Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mishandled during viewing of a log file, aka Bug ID CSCuw81494.
Cisco Prime Infrastructure 3.0
6.1
CVSSv3
CVE-2015-6434
Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, aka Bug...
Cisco Prime Infrastructure 2.2\\(2\\)
4.3
CVSSv3
CVE-2016-1474
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "cross-frame scripting (XFS)" issue, ...
Cisco Prime Infrastructure 2.2\\(2\\)
NA
CVE-2015-4331
Cisco Prime Infrastructure (PI) 1.4(0.45) and previous versions, when AAA authentication is used, allows remote authenticated users to bypass intended access restrictions via a username with a modified composition of lowercase and uppercase characters, aka Bug ID CSum59958.
Cisco Prime Infrastructure
NA
CVE-2013-1247
Cross-site scripting (XSS) vulnerability in the wireless configuration module in Cisco Prime Infrastructure allows remote malicious users to inject arbitrary web script or HTML via an SSID that is not properly handled during display of the XML windowing table, aka Bug ID CSCuf043...
Cisco Prime Infrastructure -
NA
CVE-2014-2147
The web interface in Cisco Prime Infrastructure 2.1 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "c...
Cisco Prime Infrastructure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »