Improper input validation in Cisco Prime_lan_management_solution
CVE-2012-6392
Cisco Prime LAN Management Solution (LMS) 4.1 through 4.2.2 on Linux does not properly validate authentication and authorization requests in TCP sessions, which allows remote attackers to execute arbitrary commands via a crafted session, a…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.043 (89.1th percentile) — read the EPSS interpretation.
Affected products
- Cisco Prime_lan_management_solution — versions 4.1, 4.2, 4.2.1
- Linux Linux_kernel
- N/a — versions n/a
Weakness classification (CWE)
References
- 20130109 Cisco Prime LAN Management Solution Command Execution Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)