SQL Injection Vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 (Bug ID CSCuy72175)

SQL Injection Vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 (Bug ID CSCuy72175)

CVE-2016-1393 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy72175.

Learn more about our Cis Benchmark Audit For Cisco.