CyberSec.Space Logo
返回 CVE 浏览器

CVE-2016-1291

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1120%
EPSS Percentile8.06th
Published2016年4月6日
Last Modified2026年5月6日

Vulnerability Description

Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers to execute arbitrary code via crafted deserialized data in an HTTP POST request, aka Bug ID CSCuw03192.

Affected Platforms (CPE)

📦
Cisco

Evolved Programmable Network Manager

= 1.2.0
📦
Cisco

Prime Infrastructure

= 1.2
📦
Cisco

Prime Infrastructure

= 1.2.0.103
📦
Cisco

Prime Infrastructure

= 1.2.1
📦
Cisco

Prime Infrastructure

= 1.3
📦
Cisco

Prime Infrastructure

= 1.3.0.20
📦
Cisco

Prime Infrastructure

= 1.4
📦
Cisco

Prime Infrastructure

= 1.4.0.45
📦
Cisco

Prime Infrastructure

= 1.4.1
📦
Cisco

Prime Infrastructure

= 1.4.2
📦
Cisco

Prime Infrastructure

= 2.0
📦
Cisco

Prime Infrastructure

= 2.1.0
📦
Cisco

Prime Infrastructure

= 2.2
💻
Sun

Opensolaris

= snv_124

References & Advisories

🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-remcode
🔗 http://www.securitytracker.com/id/1035497
🔗 https://blogs.securiteam.com/index.php/archives/2727
🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-remcode
🔗 http://www.securitytracker.com/id/1035497
🔗 https://blogs.securiteam.com/index.php/archives/2727

相关漏洞威胁

CVE-2016-12899.8

The API in Cisco Prime Infrastructure 1.2 through 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote attackers ...

CVE-2019-159589.8

A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could all...

CVE-2019-18238.8

A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E...

CVE-2019-18218.8

A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E...