cnvd - cnvd-2016-02072

cnvd-2016-02072

Vulnerability from cnvd

Title: Cisco Prime Infrastructure权限提升漏洞（CNVD-2016-02072）

Description:

Cisco Prime Infrastructure是美国思科（Cisco）公司的一套通过Cisco Prime LAN Management Solution（LMS）和Cisco Prime Network Control System（NCS）技术进行无线管理的解决方案。

Cisco Prime Infrastructure 1.2.0至2.2以及Cisco Evolved Programmable Network Manager 1.2存在权限提升漏洞，允许已通过身份验证的远程用户通过 HTTP 请求，这是符合一个模式筛选器通过预期的RBAC限制并获得权限。

Severity: 中

Patch Name: Cisco Prime Infrastructure权限提升漏洞（CNVD-2016-02072）的补丁

Patch Description:

Cisco Prime Infrastructure 1.2.0至2.2以及Cisco Evolved Programmable Network Manager 1.2存在权限提升漏洞，允许已通过身份验证的远程用户通过 HTTP 请求，这是符合一个模式筛选器通过预期的RBAC限制并获得权限。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth

Reference: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth

Impacted products

Name
['Cisco Prime Infrastructure >=1.2.0，<=2.2(2)', 'Cisco Evolved Programmable Network Manager (EPNM) 1.2']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-1290"
    }
  },
  "description": "Cisco Prime Infrastructure\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u901a\u8fc7Cisco Prime LAN Management Solution\uff08LMS\uff09\u548cCisco Prime Network Control System\uff08NCS\uff09\u6280\u672f\u8fdb\u884c\u65e0\u7ebf\u7ba1\u7406\u7684\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nCisco Prime Infrastructure 1.2.0\u81f32.2\u4ee5\u53caCisco Evolved Programmable Network Manager 1.2\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u5141\u8bb8\u5df2\u901a\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u7528\u6237\u901a\u8fc7 HTTP \u8bf7\u6c42\uff0c\u8fd9\u662f\u7b26\u5408\u4e00\u4e2a\u6a21\u5f0f\u7b5b\u9009\u5668\u901a\u8fc7\u9884\u671f\u7684RBAC\u9650\u5236\u5e76\u83b7\u5f97\u6743\u9650\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-02072",
  "openTime": "2016-04-08",
  "patchDescription": "Cisco Prime Infrastructure\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u901a\u8fc7Cisco Prime LAN Management Solution\uff08LMS\uff09\u548cCisco Prime Network Control System\uff08NCS\uff09\u6280\u672f\u8fdb\u884c\u65e0\u7ebf\u7ba1\u7406\u7684\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nCisco Prime Infrastructure 1.2.0\u81f32.2\u4ee5\u53caCisco Evolved Programmable Network Manager 1.2\u5b58\u5728\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff0c\u5141\u8bb8\u5df2\u901a\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u8fdc\u7a0b\u7528\u6237\u901a\u8fc7 HTTP \u8bf7\u6c42\uff0c\u8fd9\u662f\u7b26\u5408\u4e00\u4e2a\u6a21\u5f0f\u7b5b\u9009\u5668\u901a\u8fc7\u9884\u671f\u7684RBAC\u9650\u5236\u5e76\u83b7\u5f97\u6743\u9650\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Prime Infrastructure\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2016-02072\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Prime Infrastructure \u003e=1.2.0\uff0c\u003c=2.2(2)",
      "Cisco Evolved Programmable Network Manager (EPNM) 1.2"
    ]
  },
  "referenceLink": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth",
  "serverity": "\u4e2d",
  "submitTime": "2016-04-07",
  "title": "Cisco Prime Infrastructure\u6743\u9650\u63d0\u5347\u6f0f\u6d1e\uff08CNVD-2016-02072\uff09"
}

CVE-2016-1290 (GCVE-0-2016-1290)

Vulnerability from cvelistv5

Published

2016-04-06 23:00

Modified

2024-08-05 22:48

Severity ?

CWE

Summary

The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227.

References

▼	URL	Tags
	http://www.securitytracker.com/id/1035498	vdb-entry, x_refsource_SECTRACK
	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth	vendor-advisory, x_refsource_CISCO

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:48:13.675Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1035498",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1035498"
          },
          {
            "name": "20160406 Cisco Prime Infrastructure and Evolved Programmable Network Manager Privilege Escalation API Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-04-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-30T18:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1035498",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1035498"
        },
        {
          "name": "20160406 Cisco Prime Infrastructure and Evolved Programmable Network Manager Privilege Escalation API Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1290",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1035498",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1035498"
            },
            {
              "name": "20160406 Cisco Prime Infrastructure and Evolved Programmable Network Manager Privilege Escalation API Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160406-privauth"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2016-1290",
    "datePublished": "2016-04-06T23:00:00",
    "dateReserved": "2016-01-04T00:00:00",
    "dateUpdated": "2024-08-05T22:48:13.675Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted