Vulnerability Bulletins

Cisco Prime Infrastructure and Evolved Programmable Network Manager Cross-Site Scripting Vulnerabilities

System information

Affected software Cisco


Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface on an affected device. These vulnerabilities are due to insufficient validation of user-supplied input. An attacker could exploit these vulnerabilities by persuading a user of an affected interface to view a page

More info:

Standar resources

Property Value
CVE CVE-2023-20201 ,CVE-2023-20203 and CVE-2023-20205.

Version history

Version Comments Date
1.0 Advisory issued 2023-08-17
Ministerio de Defensa