A vulnerability in the web interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to access sensitive data. The attacker does not need administrator credentials and could use this information to conduct additional reconnaissance attacks. More Information: CSCvc60031 (Fixed) CSCvc60041 (Fixed) CSCvc60095 (Open) CSCvc60102 (Open). Known Affected Releases: 2.2 2.2(3) 3.0 3.1(0.0) 3.1(0.128) 3.1(4.0) 3.1(5.0) 3.2(0.0) 2.0(4.0.45D).
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/97470 | Third Party Advisory VDB Entry |
http://www.securitytracker.com/id/1038189 | |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-cpi | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cisco
Published: 2017-04-07T17:00:00
Updated: 2017-07-11T09:57:01
Reserved: 2016-12-21T00:00:00
Link: CVE-2017-3884
JSON object: View
NVD Information
Status : Modified
Published: 2017-04-07T17:59:00.357
Modified: 2019-07-29T17:46:19.010
Link: CVE-2017-3884
JSON object: View
Redhat Information
No data.
CWE