VYPR
High severity8.1NVD Advisory· Published Apr 6, 2016· Updated Jun 17, 2026

CVE-2016-1290

CVE-2016-1290

Description

The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows remote authenticated users to bypass intended RBAC restrictions and gain privileges via an HTTP request that is inconsistent with a pattern filter, aka Bug ID CSCuy10227.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

16
  • cpe:2.3:a:cisco:evolved_programmable_network_manager:1.2.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:cisco:evolved_programmable_network_manager:1.2.0:*:*:*:*:*:*:*
    • (no CPE)range: =1.2
  • cpe:2.3:a:cisco:prime_infrastructure:1.2:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:a:cisco:prime_infrastructure:1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.2.0.103:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.3.0.20:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.4.0.45:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:1.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:2.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:prime_infrastructure:2.2:*:*:*:*:*:*:*
    • (no CPE)range: >=1.2.0, <=2.2(2)
  • cpe:2.3:o:sun:opensolaris:snv_124:*:sparc:*:*:*:*:*

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.