VYPR

Prime Home

by Cisco Systems, Inc.

CVEs (3)

  • CVE-2017-3791CriFeb 1, 2017
    risk 0.65cvss 10.0epss 0.04

    A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication and execute actions with administrator privileges. The vulnerability is due to a processing error in the role-based access control (RBAC) of URLs. An…

  • CVE-2016-6452CriNov 3, 2016
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the web-based graphical user interface (GUI) of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication. The attacker could be granted full administrator privileges. Cisco Prime Home versions 5.1.1.6 and earlier and 5.2.2.2…

  • CVE-2016-6408HigSep 24, 2016
    risk 0.49cvss 7.5epss 0.01

    Cisco Prime Home 5.2.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCvb17814.