What is CVE-2021-34707?

CVE-2021-34707 is a medium-severity vulnerability in Cisco Evolved Programmable Network Manager (Epnm), classified under Information Disclosure. CVSS score: 6.5/10. Published 2021-08-04.

How severe is CVE-2021-34707?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Information disclosure in Cisco Evolved Programmable Network Manager (Epnm)

CVE-2021-34707

A vulnerability in the REST API of Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker to access sensitive data on an affected system. This vulnerability exists because the application does not s…

Vulnerability class: Information Disclosure

EPSS: 0.002 (47.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Cisco Evolved Programmable Network Manager (Epnm) — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

20210804 Cisco Evolved Programmable Network Manager Sensitive Information Disclosure Vulnerability (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2021-34707?: CVE-2021-34707 is a medium-severity vulnerability in Cisco Evolved Programmable Network Manager (Epnm), classified under Information Disclosure. CVSS score: 6.5/10. Published 2021-08-04.
How severe is CVE-2021-34707?: Medium severity. CVSS v3 base score is 6.5 out of 10.