Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
prime infrastructure vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-2153
Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in Cisco Prime Infrastructure allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCun21869.
Cisco Prime Infrastructure -
4.3
CVSSv2
CVE-2014-2147
The web interface in Cisco Prime Infrastructure 2.1 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related to a "c...
Cisco Prime Infrastructure
6.8
CVSSv2
CVE-2014-2152
Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCun21868.
Cisco Prime Infrastructure -
4.9
CVSSv2
CVE-2018-0096
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Infrastructure could allow an authenticated, remote malicious user to perform a privilege escalation in which one virtual domain user can view and modify another virtual domain configuration. The...
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.3\\(0.0\\)
3.5
CVSSv2
CVE-2018-0482
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is d...
Cisco Prime Infrastructure 3.5\\(0.0\\)
5.5
CVSSv2
CVE-2017-3869
An API Credentials Management vulnerability in the APIs for Cisco Prime Infrastructure could allow an authenticated, remote malicious user to access an API that should be restricted to a privileged user. The attacker needs to have valid credentials. More Information: CSCuy36192. ...
Cisco Prime Infrastructure 3.1\\(1\\)
4.3
CVSSv2
CVE-2017-6611
A vulnerability in the web framework code of Cisco Prime Infrastructure 2.2(2) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against the user of the web interface of the affected system. The vulnerability is due to insufficie...
Cisco Prime Infrastructure 2.2\\(2\\)
NA
CVE-2023-20127
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote malicious user to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request fo...
Cisco Prime Infrastructure 3.8
Cisco Prime Infrastructure 3.8.1
Cisco Prime Infrastructure 3.9
Cisco Prime Infrastructure
Cisco Prime Infrastructure 3.9.1
NA
CVE-2023-20130
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote malicious user to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request fo...
Cisco Prime Infrastructure 3.8
Cisco Prime Infrastructure 3.8.1
Cisco Prime Infrastructure 3.9
Cisco Prime Infrastructure
Cisco Prime Infrastructure 3.9.1
Cisco Evolved Programmable Network Manager
NA
CVE-2023-20131
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow a remote malicious user to obtain privileged information and conduct cross-site scripting (XSS) and cross-site request fo...
Cisco Prime Infrastructure 3.8
Cisco Prime Infrastructure 3.8.1
Cisco Prime Infrastructure 3.9
Cisco Prime Infrastructure
Cisco Prime Infrastructure 3.9.1
Cisco Evolved Programmable Network Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
brute force
CVE-2024-24908
open redirect
CVE-2024-31497
CVE-2023-45866
CVE-2024-4135
CVE-2024-25523
cache poisoning
CVE-2024-4649
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »