CVE-2023-20271 | Cisco Evolved Programmable Network Manager Web-based Management Interface sql injection (cisco-sa-pi-epnm-wkZJeyeq)

Inserito da Angelo Barbosa | Gen 10, 2024 | CVE

A vulnerability was found in Cisco Evolved Programmable Network Manager and Prime Infrastructure. It has been declared as critical. This vulnerability affects unknown code of the component Web-based Management Interface. The manipulation leads to sql injection.

This vulnerability was named CVE-2023-20271. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-20271 | Cisco Evolved Programmable Network Manager Web-based Management Interface sql injection (cisco-sa-pi-epnm-wkZJeyeq)

Post correlati

CVE-2024-33830 | idcCMS 1.35 readDeal.php cross-site request forgery

CVE-2024-20759 | Adobe Commerce up to 2.4.6-p4/2.4.5-p6/2.4.4-p7/2.4.7-beta3 cross site scripting (apsb24-18)

CVE-2024-6523 | ZKTeco BioTime up to 9.5.2 system-group-add user cross site scripting

CVE-2024-23668 | Fortinet FortiWebManager up to 6.0.2/6.2.4/6.3.0/7.0.4/7.2.0 HTTP Request improper authorization (FG-IR-23-222)