Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to modify a page in the web interface of the affected application. The vulnerability is due to improper sanitization of parameter values by the affected application. An attacker could exploit this vulnerability by injecting malicious code into an affected parameter and persuading a user to access a web page that triggers the rendering of the injected code. Cisco Bug IDs: CSCve47074. Known Affected Releases: 3.2(0.0).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Prime Infrastructure 安全漏洞
Vulnerability Description
Cisco Prime Infrastructure(PI)是美国思科(Cisco)公司的一套通过Cisco Prime LAN Management Solution(LMS)和Cisco Prime Network Control System(NCS)技术进行无线管理的解决方案。 Cisco PI中的administrative Web界面存在HTML注入漏洞,该漏洞源于程序没有正确的过滤参数值。远程攻击者可通过向受影响的参数注入代码并诱使用户访问网页利用该漏洞更改Web界面的页面。
CVSS Information
N/A
Vulnerability Type
N/A