CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-6408

Cisco Prime Home 5.2.0 allows remote attackers to read arbitrary files via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCvb17814.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.8%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 4.3

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-cph
http://www.securityfocus.com/bid/93092
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-cph
http://www.securityfocus.com/bid/93092

Products affected by CVE-2016-6408

Cisco » Prime Home » Version: 5.2.0

cpe:2.3:a:cisco:prime_home:5.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6408

Products

Pricing

Contact Us