CVE-2017-6698

A vulnerability in the Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) SQL database interface could allow an authenticated, remote attacker to impact the confidentiality and integrity of the application by executing arbitrary SQL queries, aka SQL Injection. More Information: CSCvc23892 CSCvc35270 CSCvc35626 CSCvc35630 CSCvc49568. Known Affected Releases: 3.1(1) 2.0(4.0.45B).

Severity	MEDIUM
CVSS	5.4
CWE	CWE-89
KEV
Published	8 years ago
Modified	6 days ago

Related Products

Product	Advisory	Evidence
Cisco Prime Infrastructure	cisco-sa-20170621-piepnm2	Cisco OpenVuln
Cisco Evolved Programmable Network Manager (EPNM)	cisco-sa-20170621-piepnm2	Cisco OpenVuln