Insecure Database Decryption Key Sharing in Cisco Prime LMS (Bug ID CSCuw85390)

CVE-2016-1360 · LOW Severity

AV:L/AC:M/AU:S/C:P/I:P/A:N

Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key across different customers' installations, which allows local users to obtain cleartext data by leveraging console connectivity, aka Bug ID CSCuw85390.

Learn more about our User Device Pen Test.