Arbitrary OS Command Execution Vulnerability in Cisco Prime NAM and vNAM

Arbitrary OS Command Execution Vulnerability in Cisco Prime NAM and vNAM

CVE-2016-1388 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) and Prime Virtual Network Analysis Module (vNAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) allow remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuy21882.

Learn more about our Network Penetration Testing.