CVE-2016-1301
07.02.2016, 11:59
The RBAC implementation in Cisco ASA-CX Content-Aware Security software before 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software before 9.3.1.1(112) allows remote authenticated users to change arbitrary passwords via a crafted HTTP request, aka Bug ID CSCuo94842.Enginsight
Vendor | Product | Version |
---|---|---|
cisco | prime_security_manager | 9.0.0 |
cisco | prime_security_manager | 9.0.1-40 |
cisco | prime_security_manager | 9.0.2-68 |
cisco | prime_security_manager | 9.1.0 |
cisco | prime_security_manager | 9.1.2-29 |
cisco | prime_security_manager | 9.1.2-42 |
cisco | prime_security_manager | 9.1.3-8 |
cisco | prime_security_manager | 9.1.3-10 |
cisco | prime_security_manager | 9.1.3-13 |
cisco | prime_security_manager | 9.2.0 |
cisco | prime_security_manager | 9.2.1-1 |
cisco | prime_security_manager | 9.2.1-2 |
cisco | asa_cx_context-aware_security_software | 9.0.1 |
cisco | asa_cx_context-aware_security_software | 9.0.1-40 |
cisco | asa_cx_context-aware_security_software | 9.0.2 |
cisco | asa_cx_context-aware_security_software | 9.0.2-68 |
cisco | asa_cx_context-aware_security_software | 9.0_base |
cisco | asa_cx_context-aware_security_software | 9.1.2-29 |
cisco | asa_cx_context-aware_security_software | 9.1.2-42 |
cisco | asa_cx_context-aware_security_software | 9.1.3-8 |
cisco | asa_cx_context-aware_security_software | 9.1.3-10 |
cisco | asa_cx_context-aware_security_software | 9.1.3-13 |
cisco | asa_cx_context-aware_security_software | 9.2.1-1 |
cisco | asa_cx_context-aware_security_software | 9.2.1-2 |
cisco | asa_cx_context-aware_security_software | 9.2.1-3 |
cisco | asa_cx_context-aware_security_software | 9.2.1-4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References