CVE-2016-6408 in Prime Homeinfo

Summary

Cisco Prime Home 5.2.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCvb17814.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/26/2016

Disclosure

09/23/2016

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-611 (Confirmed)

CVSS

7.5

EPSS

0.00431

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-6408
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-6408
CVE Details	https://www.cvedetails.com/cve/CVE-2016-6408/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!