CVE-2016-1289

The API in Cisco Prime Infrastructure 1.2 through 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote attackers to execute arbitrary code or obtain sensitive management information via a crafted HTTP request, as demonstrated by discovering managed-device credentials, aka Bug ID CSCuy10231.

Severity	CRITICAL
CVSS	9.8
CWE	CWE-119
KEV
Published	9 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco Prime Infrastructure	cisco-sa-20160629-piauthbypass	Cisco OpenVuln
Cisco Evolved Programmable Network Manager (EPNM)	cisco-sa-20160629-piauthbypass	Cisco OpenVuln