CVE-2025-20120

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device.

 This vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
ciscoCNA
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
VendorProductVersion
ciscoprime_infrastructure
2.0.0
ciscoprime_infrastructure
2.0.10
ciscoprime_infrastructure
2.0.39
ciscoprime_infrastructure
2.1
ciscoprime_infrastructure
2.1.0
ciscoprime_infrastructure
2.1.1
ciscoprime_infrastructure
2.1.2
ciscoprime_infrastructure
2.1.56
ciscoprime_infrastructure
2.2
ciscoprime_infrastructure
2.2.0
ciscoprime_infrastructure
2.2.1
ciscoprime_infrastructure
2.2.1:update01
ciscoprime_infrastructure
2.2.2
ciscoprime_infrastructure
2.2.2:update03
ciscoprime_infrastructure
2.2.2:update04
ciscoprime_infrastructure
2.2.3
ciscoprime_infrastructure
2.2.3:update02
ciscoprime_infrastructure
2.2.3:update03
ciscoprime_infrastructure
2.2.3:update04
ciscoprime_infrastructure
2.2.3:update05
ciscoprime_infrastructure
2.2.3:update06
ciscoprime_infrastructure
2.2.4
ciscoprime_infrastructure
2.2.5
ciscoprime_infrastructure
2.2.7
ciscoprime_infrastructure
2.2.8
ciscoprime_infrastructure
2.2.9
ciscoprime_infrastructure
2.2.10
ciscoprime_infrastructure
3.0.0
ciscoprime_infrastructure
3.0.1
ciscoprime_infrastructure
3.0.2
ciscoprime_infrastructure
3.0.3
ciscoprime_infrastructure
3.0.4
ciscoprime_infrastructure
3.0.5
ciscoprime_infrastructure
3.0.6
ciscoprime_infrastructure
3.0.7
ciscoprime_infrastructure
3.1:device_pack10
ciscoprime_infrastructure
3.1:device_pack11
ciscoprime_infrastructure
3.1:device_pack12
ciscoprime_infrastructure
3.1:device_pack13
ciscoprime_infrastructure
3.1:device_pack14
ciscoprime_infrastructure
3.1:device_pack15
ciscoprime_infrastructure
3.1:device_pack16
ciscoprime_infrastructure
3.1:device_pack4
ciscoprime_infrastructure
3.1:device_pack5
ciscoprime_infrastructure
3.1:device_pack6
ciscoprime_infrastructure
3.1:device_pack7
ciscoprime_infrastructure
3.1:device_pack8
ciscoprime_infrastructure
3.1:device_pack9
ciscoprime_infrastructure
3.1.0
ciscoprime_infrastructure
3.1.1
ciscoprime_infrastructure
3.1.2
ciscoprime_infrastructure
3.1.3
ciscoprime_infrastructure
3.1.4
ciscoprime_infrastructure
3.1.5
ciscoprime_infrastructure
3.1.6
ciscoprime_infrastructure
3.1.7
ciscoprime_infrastructure
3.2
ciscoprime_infrastructure
3.2:device_pack1
ciscoprime_infrastructure
3.2:device_pack2
ciscoprime_infrastructure
3.2:device_pack3
ciscoprime_infrastructure
3.2:device_pack4
ciscoprime_infrastructure
3.2.0-fips
ciscoprime_infrastructure
3.2.1
ciscoprime_infrastructure
3.2.2
ciscoprime_infrastructure
3.3:device_pack1
ciscoprime_infrastructure
3.3:device_pack2
ciscoprime_infrastructure
3.3:device_pack3
ciscoprime_infrastructure
3.3:device_pack4
ciscoprime_infrastructure
3.3.0
ciscoprime_infrastructure
3.3.0:update01
ciscoprime_infrastructure
3.3.1
ciscoprime_infrastructure
3.4:device_pack1
ciscoprime_infrastructure
3.4:device_pack10
ciscoprime_infrastructure
3.4:device_pack11
ciscoprime_infrastructure
3.4:device_pack2
ciscoprime_infrastructure
3.4:device_pack3
ciscoprime_infrastructure
3.4:device_pack4
ciscoprime_infrastructure
3.4:device_pack5
ciscoprime_infrastructure
3.4:device_pack6
ciscoprime_infrastructure
3.4:device_pack7
ciscoprime_infrastructure
3.4:device_pack8
ciscoprime_infrastructure
3.4:device_pack9
ciscoprime_infrastructure
3.4.0
ciscoprime_infrastructure
3.4.1
ciscoprime_infrastructure
3.4.1:update01
ciscoprime_infrastructure
3.4.1:update02
ciscoprime_infrastructure
3.4.2
ciscoprime_infrastructure
3.4.2:update01
ciscoprime_infrastructure
3.5:device_pack1
ciscoprime_infrastructure
3.5:device_pack2
ciscoprime_infrastructure
3.5:device_pack3
ciscoprime_infrastructure
3.5:device_pack4
ciscoprime_infrastructure
3.5.0
ciscoprime_infrastructure
3.5.0:update01
ciscoprime_infrastructure
3.5.0:update02
ciscoprime_infrastructure
3.5.0:update03
ciscoprime_infrastructure
3.5.1
ciscoprime_infrastructure
3.5.1:update01
ciscoprime_infrastructure
3.5.1:update02
ciscoprime_infrastructure
3.5.1:update03
ciscoprime_infrastructure
3.6:device_pack1*
ciscoprime_infrastructure
3.6.0
ciscoprime_infrastructure
3.6.0:update01
ciscoprime_infrastructure
3.6.0:update02
ciscoprime_infrastructure
3.6.0:update03
ciscoprime_infrastructure
3.6.0:update04
ciscoprime_infrastructure
3.7:device_pack1
ciscoprime_infrastructure
3.7:device_pack2
ciscoprime_infrastructure
3.7.0
ciscoprime_infrastructure
3.7.0:update03
ciscoprime_infrastructure
3.7.1
ciscoprime_infrastructure
3.7.1:update01
ciscoprime_infrastructure
3.7.1:update02
ciscoprime_infrastructure
3.7.1:update03
ciscoprime_infrastructure
3.7.1:update04
ciscoprime_infrastructure
3.7.1:update05
ciscoprime_infrastructure
3.7.1:update06
ciscoprime_infrastructure
3.7.1:update07
ciscoprime_infrastructure
3.8:device_pack1
ciscoprime_infrastructure
3.8.0
ciscoprime_infrastructure
3.8.0:update01
ciscoprime_infrastructure
3.8.0:update02
ciscoprime_infrastructure
3.8.1
ciscoprime_infrastructure
3.8.1:update01
ciscoprime_infrastructure
3.8.1:update02
ciscoprime_infrastructure
3.8.1:update03
ciscoprime_infrastructure
3.8.1:update04
ciscoprime_infrastructure
3.9:device_pack1
ciscoprime_infrastructure
3.9.0
ciscoprime_infrastructure
3.9.0:update01
ciscoprime_infrastructure
3.9.1
ciscoprime_infrastructure
3.9.1:update01
ciscoprime_infrastructure
3.9.1:update02
ciscoprime_infrastructure
3.9.1:update03
ciscoprime_infrastructure
3.9.1:update04
ciscoprime_infrastructure
3.10:device_pack1
ciscoprime_infrastructure
3.10:update01
ciscoprime_infrastructure
3.10.0
ciscoprime_infrastructure
3.10.1
ciscoprime_infrastructure
3.10.2
ciscoprime_infrastructure
3.10.3
ciscoprime_infrastructure
3.10.4
ciscoprime_infrastructure
3.10.4:update01
ciscoprime_infrastructure
3.10.4:update02
ciscoprime_infrastructure
3.10.4:update03
ciscoprime_infrastructure
3.10.5
ciscoprime_infrastructure
3.10.6
ciscoevolved_programmable_network_manager
1.2
ciscoevolved_programmable_network_manager
1.2.1.2
ciscoevolved_programmable_network_manager
1.2.2
ciscoevolved_programmable_network_manager
1.2.2.4
ciscoevolved_programmable_network_manager
1.2.3
ciscoevolved_programmable_network_manager
1.2.4
ciscoevolved_programmable_network_manager
1.2.4.2
ciscoevolved_programmable_network_manager
1.2.5
ciscoevolved_programmable_network_manager
1.2.6
ciscoevolved_programmable_network_manager
1.2.7
ciscoevolved_programmable_network_manager
2.0
ciscoevolved_programmable_network_manager
2.0.1
ciscoevolved_programmable_network_manager
2.0.1.1
ciscoevolved_programmable_network_manager
2.0.2
ciscoevolved_programmable_network_manager
2.0.2.1
ciscoevolved_programmable_network_manager
2.0.3
ciscoevolved_programmable_network_manager
2.0.4
ciscoevolved_programmable_network_manager
2.0.4.1
ciscoevolved_programmable_network_manager
2.0.4.2
ciscoevolved_programmable_network_manager
2.1
ciscoevolved_programmable_network_manager
2.1.1
ciscoevolved_programmable_network_manager
2.1.1.1
ciscoevolved_programmable_network_manager
2.1.1.3
ciscoevolved_programmable_network_manager
2.1.1.4
ciscoevolved_programmable_network_manager
2.1.2
ciscoevolved_programmable_network_manager
2.1.2.2
ciscoevolved_programmable_network_manager
2.1.2.3
ciscoevolved_programmable_network_manager
2.1.3
ciscoevolved_programmable_network_manager
2.1.3.2
ciscoevolved_programmable_network_manager
2.1.3.3
ciscoevolved_programmable_network_manager
2.1.3.4
ciscoevolved_programmable_network_manager
2.1.3.5
ciscoevolved_programmable_network_manager
2.1.4
ciscoevolved_programmable_network_manager
2.2
ciscoevolved_programmable_network_manager
2.2.1
ciscoevolved_programmable_network_manager
2.2.1.1
ciscoevolved_programmable_network_manager
2.2.1.2
ciscoevolved_programmable_network_manager
2.2.1.3
ciscoevolved_programmable_network_manager
2.2.1.4
ciscoevolved_programmable_network_manager
2.2.3
ciscoevolved_programmable_network_manager
2.2.4
ciscoevolved_programmable_network_manager
2.2.5
ciscoevolved_programmable_network_manager
3.0
ciscoevolved_programmable_network_manager
3.0.1
ciscoevolved_programmable_network_manager
3.0.2
ciscoevolved_programmable_network_manager
3.0.3
ciscoevolved_programmable_network_manager
3.1
ciscoevolved_programmable_network_manager
3.1.1
ciscoevolved_programmable_network_manager
3.1.2
ciscoevolved_programmable_network_manager
3.1.3
ciscoevolved_programmable_network_manager
4.0
ciscoevolved_programmable_network_manager
4.0.1
ciscoevolved_programmable_network_manager
4.0.2
ciscoevolved_programmable_network_manager
4.0.3
ciscoevolved_programmable_network_manager
4.0.3.1
ciscoevolved_programmable_network_manager
4.1
ciscoevolved_programmable_network_manager
4.1.1
ciscoevolved_programmable_network_manager
4.1.1.1
ciscoevolved_programmable_network_manager
4.1.1.2
ciscoevolved_programmable_network_manager
5.0
ciscoevolved_programmable_network_manager
5.0.1
ciscoevolved_programmable_network_manager
5.0.2
ciscoevolved_programmable_network_manager
5.0.2.1
ciscoevolved_programmable_network_manager
5.0.2.2
ciscoevolved_programmable_network_manager
5.0.2.3
ciscoevolved_programmable_network_manager
5.0.2.4
ciscoevolved_programmable_network_manager
5.0.2.5
ciscoevolved_programmable_network_manager
5.0.2.6
ciscoevolved_programmable_network_manager
5.1
ciscoevolved_programmable_network_manager
5.1.1
ciscoevolved_programmable_network_manager
5.1.2
ciscoevolved_programmable_network_manager
5.1.3
ciscoevolved_programmable_network_manager
5.1.3.1
ciscoevolved_programmable_network_manager
5.1.3.2
ciscoevolved_programmable_network_manager
5.1.4
ciscoevolved_programmable_network_manager
5.1.4.1
ciscoevolved_programmable_network_manager
5.1.4.2
ciscoevolved_programmable_network_manager
5.1.4.3
ciscoevolved_programmable_network_manager
5.1.4.4
ciscoevolved_programmable_network_manager
6.0.0
ciscoevolved_programmable_network_manager
6.0.1
ciscoevolved_programmable_network_manager
6.0.1.1
ciscoevolved_programmable_network_manager
6.0.2
ciscoevolved_programmable_network_manager
6.0.2.1
ciscoevolved_programmable_network_manager
6.0.3
ciscoevolved_programmable_network_manager
6.0.3.1
ciscoevolved_programmable_network_manager
6.1
ciscoevolved_programmable_network_manager
6.1.1
ciscoevolved_programmable_network_manager
6.1.1.1
ciscoevolved_programmable_network_manager
6.1.1.2.2
ciscoevolved_programmable_network_manager
6.1.2
ciscoevolved_programmable_network_manager
6.1.2.1
ciscoevolved_programmable_network_manager
6.1.2.2
ciscoevolved_programmable_network_manager
7.0.0
ciscoevolved_programmable_network_manager
7.0.1
ciscoevolved_programmable_network_manager
7.0.1.1
ciscoevolved_programmable_network_manager
7.0.1.2
ciscoevolved_programmable_network_manager
7.0.1.3
ciscoevolved_programmable_network_manager
7.1.0
ciscoevolved_programmable_network_manager
7.1.1
ciscoevolved_programmable_network_manager
7.1.2
ciscoevolved_programmable_network_manager
7.1.2.1
ciscoevolved_programmable_network_manager
7.1.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnmpi-sxss-GSScPGY4