Cisco Prime Infrastructure Vulnerabilidad

Cronología

El año pasado

Versión

3.08
3.1(1)4
3.14
2.23
2.0(4.0.45B)3

Contramedidas

Official Fix17
Temporary Fix0
Workaround1
Unavailable0
Not Defined40

Explotabilidad

High1
Functional0
Proof-of-Concept0
Unproven1
Not Defined56

Vector de acceso

Not Defined0
Physical0
Local2
Adjacent0
Network56

Autenticación

Not Defined0
High0
Low32
None26

La interacción del usuario

Not Defined0
Required15
None43

C3BM Index

El año pasado

CVSSv3 Base

≤10
≤20
≤30
≤41
≤58
≤618
≤714
≤85
≤99
≤103

CVSSv3 Temp

≤10
≤20
≤30
≤41
≤58
≤619
≤713
≤86
≤98
≤103

VulDB

≤10
≤20
≤30
≤42
≤513
≤610
≤718
≤83
≤99
≤103

NVD

≤10
≤20
≤30
≤40
≤53
≤66
≤718
≤84
≤99
≤105

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

Proveedor

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k0
<2k0
<5k2
<10k18
<25k32
<50k6
<100k0
≥100k0

Explotar hoy

<1k12
<2k5
<5k17
<10k12
<25k12
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

Affected Versions (28): 1.2, 1.2(0.103), 1.2(400), 1.3, 1.4, 1.4(0.45), 2.0, 2.0(0.0), 2.0(1.0.34A), 2.0(4.0.45B), 2.0(4.0.45D), 2.1, 2.2, 2.2(2), 2.2(3), 2.2.1, 2.2.2, 3.0, 3.1, 3.1(0.0), 3.1(0.128), 3.1(1), 3.1(4.0), 3.1(5.0), 3.2, 3.2(0.0), 3.3, 3.4

Link to Product Website: https://www.cisco.com/

Tipo de software: Network Management Software

Fecha de publicaciónBaseTempVulnerabilidad0dayTodayExpConCTICVE
2021-11-044.84.7Cisco Prime Infrastructure Web-based Management Interface cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-34784
2021-09-023.33.2Cisco Prime Infrastructure CLI divulgación de información$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2021-34733
2021-05-225.35.1Cisco Evolved Programmable Network CLI escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-1306
2021-05-226.36.0Cisco Prime Infrastructure Web-based Management Interface escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.05CVE-2021-1487
2020-06-035.95.6Cisco Prime Infrastructure Web-based Management Interface sql injection$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-3339
2019-11-269.08.6Cisco Prime Infrastructure REST API escalada de privilegios$25k-$100k$0-$5kNot DefinedOfficial Fix0.06CVE-2019-15958
2019-10-025.75.4Cisco Prime Infrastructure Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2019-12713
2019-10-025.75.4Cisco Prime Infrastructure Web-based Management Interface cross site scripting$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-12712
2019-06-206.46.1Cisco Prime Infrastructure Virtual Domain System escalada de privilegios$5k-$25k$0-$5kNot DefinedOfficial Fix0.02CVE-2019-1906
2019-05-167.27.2Cisco Prime Infrastructure/Evolved Programmable Network Web-based Management Interface SQL sql injection$5k-$25k$5k-$25kNot DefinedNot Defined0.04CVE-2019-1825

48 no se muestran más entradas

más entradas por Cisco

Do you know our Splunk app?

Download it now for free!