QID 731077
Date Published: 2024-01-17
QID 731077: Cisco Prime Infrastructure Multiple Security Vulnerabilities (cisco-sa-pi-epnm-wkZJeyeq)
CVE-2023-20257: A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct XSS attacks.
CVE-2023-20258: A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system.
CVE-2023-20260: A vulnerability in the application CLI of Cisco Prime Infrastructure could allow an authenticated, local attacker to gain elevated privileges.
CVE-2023-20271: A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system.
Affected Versions:
Cisco Prime Infrastructure prior to version 3.10.4 update 2
QID Detection Logic (Unauthenticated):
The QID checks for the Vulnerable Cisco Prime Infrastructure version retrieved via a GET request to a "webacs/js/xmp/nls/xmp.js" and updates as well using endpoint "webacs/pages/common/updateQuickView.jsp" if installed
Successful exploitation of these vulnerabilities may allow an attacker to execute arbitrary command, manipulate database, escalate to high privileges or inject arbitrary JavaScript on targeted user.
Customers are advised to refer to cisco-sa-pi-epnm-wkZJeyeq for more information to pertaining this vulnerability.
- cisco-sa-pi-epnm-wkZJeyeq -
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-wkZJeyeq
CVEs related to QID 731077
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-pi-epnm-wkZJeyeq |
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-epnm-wkZJeyeq |