Multiple Cisco Products XML External Entity Injection Vulnerability

Bugtraq ID: 99194
Class: Design Error
CVE: CVE-2017-6662
Remote: Yes
Local: No
Published: Jun 21 2017 12:00AM
Updated: Jun 21 2017 12:00AM
Credit: The vendor reported this issue.
Vulnerable: Cisco Prime Infrastructure 3.1.6
Cisco Prime Infrastructure 3.1.5
Cisco Prime Infrastructure 3.0.3
Cisco Prime Infrastructure 3.0.2
Cisco Prime Infrastructure 1.3
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 3.2
Cisco Prime Infrastructure 3.1(1)
Cisco Prime Infrastructure 3.1
Cisco Prime Infrastructure 3.0
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 2.0.0
Cisco Prime Infrastructure 2.0
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 1.4.0
Cisco Prime Infrastructure 1.4
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.1
Cisco Evolved Programmable Network Manager 2.1
Cisco Evolved Programmable Network Manager 2.0
Cisco Evolved Programmable Network Manager 1.2
Not Vulnerable: Cisco Prime Infrastructure 3.1.6 Update 1


 

Privacy Statement
Copyright 2010, SecurityFocus