Password Change Vulnerability in Cisco ASA-CX and PRSM Software

Password Change Vulnerability in Cisco ASA-CX and PRSM Software

CVE-2016-1301 · HIGH Severity

AV:N/AC:M/AU:S/C:C/I:C/A:C

The RBAC implementation in Cisco ASA-CX Content-Aware Security software before 9.3.1.1(112) and Cisco Prime Security Manager (PRSM) software before 9.3.1.1(112) allows remote authenticated users to change arbitrary passwords via a crafted HTTP request, aka Bug ID CSCuo94842.

Learn more about our Cis Benchmark Audit For Cisco.