NVD

Id
17704  
Name
CVE-2016-1289  
Description
The API in Cisco Prime Infrastructure 1.2 through 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote attackers to execute arbitrary code or obtain sensitive management information via a crafted HTTP request, as demonstrated by discovering managed-device credentials, aka Bug ID CSCuy10231.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2016-07-02  
Modified Date
2016-11-28  
Seq
2016-1289  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
97548 17704 CVE-2016-1289 20160629 Cisco Prime Infrastructure and Evolved Programmable Network Manager Authentication Bypass API Vulnerability  View
97549 17704 CVE-2016-1289 91504  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
2640 JVNDB-2016-003413 Cisco Prime Infrastructure および Evolved Programmable Network Manager の API における任意のコードを実行される脆弱性 Cisco Prime Infrastructure および Evolved Programmable Network Manager (EPNM) の API には、任意のコードを実行される、または重要な管理情報を取得される脆弱性が存在します。 CVE-2016-1289 87795 CVE-2016-1289 17704 10 9.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-003413.html 2016-06-29 2016-07-06 View