📦 Prime Infrastructure

CVE-2023-44487 is an HTTP/2 protocol vulnerability that allows attackers to cause denial of service by rapidly resetting streams, consuming server resources. This affects any system using HTTP/2, incl...

This vulnerability allows authenticated remote attackers to execute arbitrary commands on Cisco Prime Infrastructure and EPN Manager systems via crafted HTTP requests to the web management interface. ...

This stored XSS vulnerability in Cisco EPNM and Prime Infrastructure allows authenticated administrators to inject malicious scripts into the web interface. When other users view the compromised inter...

An authenticated attacker with administrative credentials can inject malicious scripts into Cisco EPNM/Prime Infrastructure web interface fields, which then execute in victims' browsers when they view...

An authenticated low-privileged attacker can exploit insufficient input validation in certain REST APIs of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager to conduct blind SQ...

An unauthenticated remote attacker can inject malicious scripts into Cisco EPNM and Prime Infrastructure web interfaces, which then execute in victims' browsers when they view compromised pages. This ...

This is a cross-site scripting (XSS) vulnerability in Cisco PI and EPNM web management interfaces that allows unauthenticated attackers to execute malicious scripts in users' browsers. Attackers can s...