CVE-2025-20272

A vulnerability in a subset of REST APIs of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, low-privileged, remote attacker to conduct a blind SQL injection attack.

This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted request to an affected API. A successful exploit could allow the attacker to view data in some database tables on an affected device.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
ciscoCNA
4.3 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
VendorProductVersion
ciscoprime_infrastructure
2.0.0
ciscoprime_infrastructure
2.0.10
ciscoprime_infrastructure
2.0.39
ciscoprime_infrastructure
2.1
ciscoprime_infrastructure
2.1.0
ciscoprime_infrastructure
2.1.1
ciscoprime_infrastructure
2.1.2
ciscoprime_infrastructure
2.1.56
ciscoprime_infrastructure
2.2
ciscoprime_infrastructure
2.2.0
ciscoprime_infrastructure
2.2.1
ciscoprime_infrastructure
2.2.1:update01
ciscoprime_infrastructure
2.2.2
ciscoprime_infrastructure
2.2.2:update03
ciscoprime_infrastructure
2.2.2:update04
ciscoprime_infrastructure
2.2.3
ciscoprime_infrastructure
2.2.3:update02
ciscoprime_infrastructure
2.2.3:update03
ciscoprime_infrastructure
2.2.3:update04
ciscoprime_infrastructure
2.2.3:update05
ciscoprime_infrastructure
2.2.3:update06
ciscoprime_infrastructure
2.2.4
ciscoprime_infrastructure
2.2.5
ciscoprime_infrastructure
2.2.7
ciscoprime_infrastructure
2.2.8
ciscoprime_infrastructure
2.2.9
ciscoprime_infrastructure
2.2.10
ciscoprime_infrastructure
3.0.0
ciscoprime_infrastructure
3.0.1
ciscoprime_infrastructure
3.0.2
ciscoprime_infrastructure
3.0.3
ciscoprime_infrastructure
3.0.4
ciscoprime_infrastructure
3.0.5
ciscoprime_infrastructure
3.0.6
ciscoprime_infrastructure
3.0.7
ciscoprime_infrastructure
3.1:device_pack10
ciscoprime_infrastructure
3.1:device_pack11
ciscoprime_infrastructure
3.1:device_pack12
ciscoprime_infrastructure
3.1:device_pack13
ciscoprime_infrastructure
3.1:device_pack14
ciscoprime_infrastructure
3.1:device_pack15
ciscoprime_infrastructure
3.1:device_pack16
ciscoprime_infrastructure
3.1:device_pack4
ciscoprime_infrastructure
3.1:device_pack5
ciscoprime_infrastructure
3.1:device_pack6
ciscoprime_infrastructure
3.1:device_pack7
ciscoprime_infrastructure
3.1:device_pack8
ciscoprime_infrastructure
3.1:device_pack9
ciscoprime_infrastructure
3.1.0
ciscoprime_infrastructure
3.1.1
ciscoprime_infrastructure
3.1.2
ciscoprime_infrastructure
3.1.3
ciscoprime_infrastructure
3.1.4
ciscoprime_infrastructure
3.1.5
ciscoprime_infrastructure
3.1.6
ciscoprime_infrastructure
3.1.7
ciscoprime_infrastructure
3.2
ciscoprime_infrastructure
3.2:device_pack1
ciscoprime_infrastructure
3.2:device_pack2
ciscoprime_infrastructure
3.2:device_pack3
ciscoprime_infrastructure
3.2:device_pack4
ciscoprime_infrastructure
3.2.0-fips
ciscoprime_infrastructure
3.2.1
ciscoprime_infrastructure
3.2.2
ciscoprime_infrastructure
3.3:device_pack1
ciscoprime_infrastructure
3.3:device_pack2
ciscoprime_infrastructure
3.3:device_pack3
ciscoprime_infrastructure
3.3:device_pack4
ciscoprime_infrastructure
3.3.0
ciscoprime_infrastructure
3.3.0:update01
ciscoprime_infrastructure
3.3.1
ciscoprime_infrastructure
3.4:device_pack1
ciscoprime_infrastructure
3.4:device_pack10
ciscoprime_infrastructure
3.4:device_pack11
ciscoprime_infrastructure
3.4:device_pack2
ciscoprime_infrastructure
3.4:device_pack3
ciscoprime_infrastructure
3.4:device_pack4
ciscoprime_infrastructure
3.4:device_pack5
ciscoprime_infrastructure
3.4:device_pack6
ciscoprime_infrastructure
3.4:device_pack7
ciscoprime_infrastructure
3.4:device_pack8
ciscoprime_infrastructure
3.4:device_pack9
ciscoprime_infrastructure
3.4.0
ciscoprime_infrastructure
3.4.1
ciscoprime_infrastructure
3.4.1:update01
ciscoprime_infrastructure
3.4.1:update02
ciscoprime_infrastructure
3.4.2
ciscoprime_infrastructure
3.4.2:update01
ciscoprime_infrastructure
3.5:device_pack1
ciscoprime_infrastructure
3.5:device_pack2
ciscoprime_infrastructure
3.5:device_pack3
ciscoprime_infrastructure
3.5:device_pack4
ciscoprime_infrastructure
3.5.0
ciscoprime_infrastructure
3.5.0:update01
ciscoprime_infrastructure
3.5.0:update02
ciscoprime_infrastructure
3.5.0:update03
ciscoprime_infrastructure
3.5.1
ciscoprime_infrastructure
3.5.1:update01
ciscoprime_infrastructure
3.5.1:update02
ciscoprime_infrastructure
3.5.1:update03
ciscoprime_infrastructure
3.6:device_pack1
ciscoprime_infrastructure
3.6.0
ciscoprime_infrastructure
3.6.0:update01
ciscoprime_infrastructure
3.6.0:update02
ciscoprime_infrastructure
3.6.0:update03
ciscoprime_infrastructure
3.6.0:update04
ciscoprime_infrastructure
3.7:device_pack1
ciscoprime_infrastructure
3.7:device_pack2
ciscoprime_infrastructure
3.7.0
ciscoprime_infrastructure
3.7.0:update03
ciscoprime_infrastructure
3.7.1
ciscoprime_infrastructure
3.7.1:update01
ciscoprime_infrastructure
3.7.1:update02
ciscoprime_infrastructure
3.7.1:update03
ciscoprime_infrastructure
3.7.1:update04
ciscoprime_infrastructure
3.7.1:update05
ciscoprime_infrastructure
3.7.1:update06
ciscoprime_infrastructure
3.7.1:update07
ciscoprime_infrastructure
3.8:device_pack1
ciscoprime_infrastructure
3.8.0
ciscoprime_infrastructure
3.8.0:update01
ciscoprime_infrastructure
3.8.0:update02
ciscoprime_infrastructure
3.8.1
ciscoprime_infrastructure
3.8.1:update01
ciscoprime_infrastructure
3.8.1:update02
ciscoprime_infrastructure
3.8.1:update03
ciscoprime_infrastructure
3.8.1:update04
ciscoprime_infrastructure
3.9:device_pack1
ciscoprime_infrastructure
3.9.0
ciscoprime_infrastructure
3.9.0:update01
ciscoprime_infrastructure
3.9.1
ciscoprime_infrastructure
3.9.1:update01
ciscoprime_infrastructure
3.9.1:update02
ciscoprime_infrastructure
3.9.1:update03
ciscoprime_infrastructure
3.9.1:update04
ciscoprime_infrastructure
3.10
ciscoprime_infrastructure
3.10:device_pack1
ciscoprime_infrastructure
3.10:update01
ciscoprime_infrastructure
3.10.0
ciscoprime_infrastructure
3.10.1
ciscoprime_infrastructure
3.10.2
ciscoprime_infrastructure
3.10.3
ciscoprime_infrastructure
3.10.4
ciscoprime_infrastructure
3.10.4:update01
ciscoprime_infrastructure
3.10.4:update02
ciscoprime_infrastructure
3.10.4:update03
ciscoprime_infrastructure
3.10.5
ciscoprime_infrastructure
3.10.6
ciscoprime_infrastructure
3.10.6:update01
ciscoevolved_programmable_network_manager
1.1
ciscoevolved_programmable_network_manager
1.2
ciscoevolved_programmable_network_manager
1.2.1.2
ciscoevolved_programmable_network_manager
1.2.2
ciscoevolved_programmable_network_manager
1.2.2.4
ciscoevolved_programmable_network_manager
1.2.3
ciscoevolved_programmable_network_manager
1.2.4
ciscoevolved_programmable_network_manager
1.2.4.2
ciscoevolved_programmable_network_manager
1.2.5
ciscoevolved_programmable_network_manager
1.2.6
ciscoevolved_programmable_network_manager
1.2.7
ciscoevolved_programmable_network_manager
2.0
ciscoevolved_programmable_network_manager
2.0.1
ciscoevolved_programmable_network_manager
2.0.1.1
ciscoevolved_programmable_network_manager
2.0.2
ciscoevolved_programmable_network_manager
2.0.2.1
ciscoevolved_programmable_network_manager
2.0.3
ciscoevolved_programmable_network_manager
2.0.4
ciscoevolved_programmable_network_manager
2.0.4.1
ciscoevolved_programmable_network_manager
2.0.4.2
ciscoevolved_programmable_network_manager
2.1
ciscoevolved_programmable_network_manager
2.1.1
ciscoevolved_programmable_network_manager
2.1.1.1
ciscoevolved_programmable_network_manager
2.1.1.3
ciscoevolved_programmable_network_manager
2.1.1.4
ciscoevolved_programmable_network_manager
2.1.2
ciscoevolved_programmable_network_manager
2.1.2.2
ciscoevolved_programmable_network_manager
2.1.2.3
ciscoevolved_programmable_network_manager
2.1.3
ciscoevolved_programmable_network_manager
2.1.3.2
ciscoevolved_programmable_network_manager
2.1.3.3
ciscoevolved_programmable_network_manager
2.1.3.4
ciscoevolved_programmable_network_manager
2.1.3.5
ciscoevolved_programmable_network_manager
2.1.4
ciscoevolved_programmable_network_manager
2.2
ciscoevolved_programmable_network_manager
2.2.1
ciscoevolved_programmable_network_manager
2.2.1.1
ciscoevolved_programmable_network_manager
2.2.1.2
ciscoevolved_programmable_network_manager
2.2.1.3
ciscoevolved_programmable_network_manager
2.2.1.4
ciscoevolved_programmable_network_manager
2.2.3
ciscoevolved_programmable_network_manager
2.2.4
ciscoevolved_programmable_network_manager
2.2.5
ciscoevolved_programmable_network_manager
3.0
ciscoevolved_programmable_network_manager
3.0.1
ciscoevolved_programmable_network_manager
3.0.2
ciscoevolved_programmable_network_manager
3.0.3
ciscoevolved_programmable_network_manager
3.1
ciscoevolved_programmable_network_manager
3.1.1
ciscoevolved_programmable_network_manager
3.1.2
ciscoevolved_programmable_network_manager
3.1.3
ciscoevolved_programmable_network_manager
4.0
ciscoevolved_programmable_network_manager
4.0.1
ciscoevolved_programmable_network_manager
4.0.2
ciscoevolved_programmable_network_manager
4.0.3
ciscoevolved_programmable_network_manager
4.0.3.1
ciscoevolved_programmable_network_manager
4.1
ciscoevolved_programmable_network_manager
4.1.1
ciscoevolved_programmable_network_manager
4.1.1.1
ciscoevolved_programmable_network_manager
4.1.1.2
ciscoevolved_programmable_network_manager
5.0
ciscoevolved_programmable_network_manager
5.0.1
ciscoevolved_programmable_network_manager
5.0.2
ciscoevolved_programmable_network_manager
5.0.2.1
ciscoevolved_programmable_network_manager
5.0.2.2
ciscoevolved_programmable_network_manager
5.0.2.3
ciscoevolved_programmable_network_manager
5.0.2.4
ciscoevolved_programmable_network_manager
5.0.2.5
ciscoevolved_programmable_network_manager
5.0.2.6
ciscoevolved_programmable_network_manager
5.1
ciscoevolved_programmable_network_manager
5.1.1
ciscoevolved_programmable_network_manager
5.1.2
ciscoevolved_programmable_network_manager
5.1.3
ciscoevolved_programmable_network_manager
5.1.3.1
ciscoevolved_programmable_network_manager
5.1.3.2
ciscoevolved_programmable_network_manager
5.1.4
ciscoevolved_programmable_network_manager
5.1.4.1
ciscoevolved_programmable_network_manager
5.1.4.2
ciscoevolved_programmable_network_manager
5.1.4.3
ciscoevolved_programmable_network_manager
5.1.4.4
ciscoevolved_programmable_network_manager
6.0.0
ciscoevolved_programmable_network_manager
6.0.1
ciscoevolved_programmable_network_manager
6.0.1.1
ciscoevolved_programmable_network_manager
6.0.2
ciscoevolved_programmable_network_manager
6.0.2.1
ciscoevolved_programmable_network_manager
6.0.3
ciscoevolved_programmable_network_manager
6.0.3.1
ciscoevolved_programmable_network_manager
6.1
ciscoevolved_programmable_network_manager
6.1.1
ciscoevolved_programmable_network_manager
6.1.1.1
ciscoevolved_programmable_network_manager
6.1.1.2.2
ciscoevolved_programmable_network_manager
6.1.2
ciscoevolved_programmable_network_manager
6.1.2.1
ciscoevolved_programmable_network_manager
6.1.2.2
ciscoevolved_programmable_network_manager
6.1.2.3
ciscoevolved_programmable_network_manager
7.0.0
ciscoevolved_programmable_network_manager
7.0.1
ciscoevolved_programmable_network_manager
7.0.1.1
ciscoevolved_programmable_network_manager
7.0.1.2
ciscoevolved_programmable_network_manager
7.0.1.3
ciscoevolved_programmable_network_manager
7.1.0
ciscoevolved_programmable_network_manager
7.1.1
ciscoevolved_programmable_network_manager
7.1.2
ciscoevolved_programmable_network_manager
7.1.2.1
ciscoevolved_programmable_network_manager
7.1.3
ciscoevolved_programmable_network_manager
7.1.3.1
ciscoevolved_programmable_network_manager
7.1.4
ciscoevolved_programmable_network_manager
8.0.0
ciscoevolved_programmable_network_manager
8.0.0.1
ciscoevolved_programmable_network_manager
8.1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-piepnm-bsi-25JJqsbb