CVE-2016-11017

Current Description

The API web interface in Cisco Prime Infrastructure before 3.1 and Cisco Evolved Programmable Network Manager before 1.2.4 allows remote authenticated users to bypass intended RBAC restrictions and obtain sensitive information, and consequently gain privileges, via crafted JSON data, aka Bug ID CSCuy12409.

Basic Data

PublishedMay 25, 2016
Last ModifiedJuly 29, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-284
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.5
SeverityMEDIUM
Exploitability Score8.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

CVSS 3 - Version3.0
CVSS 3 - Vector StringCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 3 - Attack VectorNETWORK
CVSS 3 - Attack ComplexityLOW
CVSS 3 - Privileges RequiredLOW
CVSS 3 - User InteractionNONE
CVSS 3 - ScopeUNCHANGED
CVSS 3 - Confidentiality ImpactHIGH
CVSS 3 - Integrity ImpactHIGH
CVSS 3 - Availability ImpactHIGH
CVSS 3 - Base Score8.8
CVSS 3 - Base SeverityHIGH
Exploitability Score2.8
Base SeverityHIGH

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationCiscoEvolved Programmable Network Manager1.2.0*******
    2.3ApplicationCiscoEvolved Programmable Network Manager1.2.1.3*******
    2.3ApplicationCiscoEvolved Programmable Network Manager1.2.200*******
    2.3ApplicationCiscoEvolved Programmable Network Manager1.2.300*******
    2.3ApplicationCiscoPrime Infrastructure1.2*******
    2.3ApplicationCiscoPrime Infrastructure1.2.0.103*******
    2.3ApplicationCiscoPrime Infrastructure1.2.1*******
    2.3ApplicationCiscoPrime Infrastructure1.3*******
    2.3ApplicationCiscoPrime Infrastructure1.3.0.20*******
    2.3ApplicationCiscoPrime Infrastructure1.4*******
    2.3ApplicationCiscoPrime Infrastructure1.4.0.45*******
    2.3ApplicationCiscoPrime Infrastructure1.4.1*******
    2.3ApplicationCiscoPrime Infrastructure1.4.2*******
    2.3ApplicationCiscoPrime Infrastructure2.0*******
    2.3ApplicationCiscoPrime Infrastructure2.1.0*******
    2.3ApplicationCiscoPrime Infrastructure2.2*******
    2.3ApplicationCiscoPrime Infrastructure2.2(2)*******
    2.3ApplicationCiscoPrime Infrastructure3.0*******

Vulnerable Software List

VendorProductVersions
Cisco Prime Infrastructure 1.2, 1.2.0.103, 1.2.1, 1.3, 1.3.0.20, 1.4, 1.4.0.45, 1.4.1, 1.4.2, 2.0, 2.1.0, 2.2, 2.2(2), 3.0
Cisco Evolved Programmable Network Manager 1.2.0, 1.2.1.3, 1.2.200, 1.2.300

References

NameSourceURLTags
20160523 Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager JSON Privilege Escalation Vulnerabilityhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160523-pi-epnmCISCOVendor Advisory
1035948http://www.securitytracker.com/id/1035948SECTRACK