漏洞信息详情

Cisco Prime Infrastructure Software和Cisco Evolved Programmable Network Manager 输入验证错误漏洞

漏洞简介

Cisco Prime Infrastructure Software和Cisco Evolved Programmable Network Manager都是美国思科(Cisco)公司的产品。Cisco Prime Infrastructure Software是一套通过Cisco Prime LAN Management Solution(LMS)和Cisco Prime Network Control System(NCS)技术进行无线管理的软件。Cisco Evolved Programmable Network Manager是一套网络管理解决方案。

Cisco PI Software和Cisco EPN Manager中基于Web的管理界面存在输入验证错误漏洞。该漏洞源于网络系统或产品未对输入的数据进行正确的验证。以下产品及版本受到影响:Cisco PI Software 3.4.1之前版本,3.5之前版本,3.6之前版本;EPN Manager 3.0.1之前版本。

漏洞公告

目前厂商已发布升级补丁以修复漏洞,补丁获取链接:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-pi-rce

参考网址

来源:MISC

链接:http://packetstormsecurity.com/files/153350/Cisco-Prime-Infrastructure-Health-Monitor-TarArchive-Directory-Traversal.html

来源:BID

链接:http://www.securityfocus.com/bid/108339

来源:www.cisco.com

链接:http://www.cisco.com/

来源:BID

链接:https://www.securityfocus.com/bid/108339

来源:tools.cisco.com

链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-pi-pathtrav-1819

来源:tools.cisco.com

链接:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-pi-rce

来源:www.securityfocus.com

链接:https://www.securityfocus.com/bid/108339

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/153350/Cisco-Prime-Infrastructure-Health-Monitor-TarArchive-Directory-Traversal.html

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/Cisco-Prime-Infrastructure-code-execution-via-the-Web-UI-29317

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/81094

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2019-1821

受影响实体

    暂无


漏洞信息快速查询

相关漏洞

更多