Title: Authenticated Remote Access Vulnerability in Cisco Prime Infrastructure and Cisco EPN Manager Web Interface

Title: Authenticated Remote Access Vulnerability in Cisco Prime Infrastructure and Cisco EPN Manager Web Interface

CVE-2017-3884 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

A vulnerability in the web interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to access sensitive data. The attacker does not need administrator credentials and could use this information to conduct additional reconnaissance attacks. More Information: CSCvc60031 (Fixed) CSCvc60041 (Fixed) CSCvc60095 (Open) CSCvc60102 (Open). Known Affected Releases: 2.2 2.2(3) 3.0 3.1(0.0) 3.1(0.128) 3.1(4.0) 3.1(5.0) 3.2(0.0) 2.0(4.0.45D).

Learn more about our Cis Benchmark Audit For Cisco.