CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-1301

The RBAC implementation in Cisco ASA-CX Content-Aware Security software before 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software before 9.3.1.1(112) allows remote authenticated users to change arbitrary passwords via a crafted HTTP request, aka Bug ID CSCuo94842.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 8.5

References

Products affected by CVE-2016-1301

Cisco » Prime Security Manager » Version: 9.0.0

cpe:2.3:a:cisco:prime_security_manager:9.0.0
Cisco » Prime Security Manager » Version: 9.0.1-40

cpe:2.3:a:cisco:prime_security_manager:9.0.1-40
Cisco » Prime Security Manager » Version: 9.0.2-68

cpe:2.3:a:cisco:prime_security_manager:9.0.2-68
Cisco » Prime Security Manager » Version: 9.1.0

cpe:2.3:a:cisco:prime_security_manager:9.1.0
Cisco » Prime Security Manager » Version: 9.1.2-29

cpe:2.3:a:cisco:prime_security_manager:9.1.2-29
Cisco » Prime Security Manager » Version: 9.1.2-42

cpe:2.3:a:cisco:prime_security_manager:9.1.2-42
Cisco » Prime Security Manager » Version: 9.1.3-10

cpe:2.3:a:cisco:prime_security_manager:9.1.3-10
Cisco » Prime Security Manager » Version: 9.1.3-13

cpe:2.3:a:cisco:prime_security_manager:9.1.3-13
Cisco » Prime Security Manager » Version: 9.1.3-8

cpe:2.3:a:cisco:prime_security_manager:9.1.3-8
Cisco » Prime Security Manager » Version: 9.2.0

cpe:2.3:a:cisco:prime_security_manager:9.2.0
Cisco » Prime Security Manager » Version: 9.2.1-1

cpe:2.3:a:cisco:prime_security_manager:9.2.1-1
Cisco » Prime Security Manager » Version: 9.2.1-2

cpe:2.3:a:cisco:prime_security_manager:9.2.1-2
Cisco » Asa Cx Context-Aware Security Software » Version: 9.0.1

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.0.1
Cisco » Asa Cx Context-Aware Security Software » Version: 9.0.1-40

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.0.1-40
Cisco » Asa Cx Context-Aware Security Software » Version: 9.0.2

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.0.2
Cisco » Asa Cx Context-Aware Security Software » Version: 9.0.2-68

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.0.2-68
Cisco » Asa Cx Context-Aware Security Software » Version: 9.0_base

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.0_base
Cisco » Asa Cx Context-Aware Security Software » Version: 9.1.2-29

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.1.2-29
Cisco » Asa Cx Context-Aware Security Software » Version: 9.1.2-42

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.1.2-42
Cisco » Asa Cx Context-Aware Security Software » Version: 9.1.3-10

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.1.3-10
Cisco » Asa Cx Context-Aware Security Software » Version: 9.1.3-13

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.1.3-13
Cisco » Asa Cx Context-Aware Security Software » Version: 9.1.3-8

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.1.3-8
Cisco » Asa Cx Context-Aware Security Software » Version: 9.2.1-1

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.2.1-1
Cisco » Asa Cx Context-Aware Security Software » Version: 9.2.1-2

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.2.1-2
Cisco » Asa Cx Context-Aware Security Software » Version: 9.2.1-3

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.2.1-3
Cisco » Asa Cx Context-Aware Security Software » Version: 9.2.1-4

cpe:2.3:o:cisco:asa_cx_context-aware_security_software:9.2.1-4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-1301

Products

Pricing

Contact Us