Cisco: >> Cloud Network Automation Provisioner Security Vulnerabilities
Cisco Cloud Network Automation Provisioner (CNAP) 1.0(0) in Cisco Configuration Assistant (CCA) allows remote attackers to bypass intended filesystem and administrative-endpoint restrictions via GET API calls, aka Bug ID CSCuy77145.
CVSS Score
8.2
EPSS Score
0.002
Published
2016-07-03
SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy72175.
CVSS Score
7.1
EPSS Score
0.001
Published
2016-05-12