Lucene search
CiscoCVE-2015-4331HistoryAug 22, 2015 - 5:59 p.m.
CVE-2015-4331
2015-08-2217:59:00
CWE-264
cisco
web.nvd.nist.gov
35
cve-2015-4331
cisco prime infrastructure
aaa authentication
access restrictions
bug id csum59958
nvd
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
38.8%
Cisco Prime Infrastructure (PI) 1.4(0.45) and earlier, when AAA authentication is used, allows remote authenticated users to bypass intended access restrictions via a username with a modified composition of lowercase and uppercase characters, aka Bug ID CSum59958.
Affected configurations
Node
ciscoprime_infrastructureRange≤1.4.0.45
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | prime_infrastructure | * | cpe:2.3:a:cisco:prime_infrastructure:*:*:*:*:*:*:*:* |
Related
prion
prion
Authentication flaw
2015-08-22 17:59:00
cvelist
cvelist
CVE-2015-4331
2015-08-22 17:00:00
nvd
nvd
CVE-2015-4331
2015-08-22 17:59:00
cisco
cisco
Cisco Prime Infrastructure Privilege Escalation Vulnerability
2015-08-20 13:45:27
CVSS2
3.5
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:S/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
38.8%
Related for CVE-2015-4331