Skip to main content

Cloud Network Automation Provisioner

2 CVEs product

Monthly

CVE-2016-1441 HIGH This Week

Cisco Cloud Network Automation Provisioner (CNAP) 1.0(0) in Cisco Configuration Assistant (CCA) allows remote attackers to bypass intended filesystem and administrative-endpoint restrictions via GET. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Cloud Network Automation Provisioner
NVD
CVSS 3.0
8.2
EPSS
0.2%
CVE-2016-1393 HIGH This Week

SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco SQLi Cloud Network Automation Provisioner
NVD
CVSS 3.0
7.1
EPSS
0.1%
EPSS 0% CVSS 8.2
HIGH This Week

Cisco Cloud Network Automation Provisioner (CNAP) 1.0(0) in Cisco Configuration Assistant (CCA) allows remote attackers to bypass intended filesystem and administrative-endpoint restrictions via GET. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Cloud Network Automation Provisioner
NVD
EPSS 0% CVSS 7.1
HIGH This Week

SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco SQLi Cloud Network Automation Provisioner
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy