← Voltar para CVEs
CVE-2016-1360
N/ADescricao
Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key across different customers' installations, which allows local users to obtain cleartext data by leveraging console connectivity, aka Bug ID CSCuw85390.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado3/12/2016
Ultima modificacao4/12/2025
Fontenvd
Avistamentos honeypot0
Produtos afetados
cisco:prime_lan_management_solution
Fraquezas (CWE)
CWE-200
Referencias
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160310-prime-lms(psirt@cisco.com)
http://www.securitytracker.com/id/1035313(psirt@cisco.com)
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160310-prime-lms(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035313(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.