cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-0482,https://securityvulnerability.io/vulnerability/CVE-2018-0482,Cisco Prime Network Control System Stored Cross-Site Scripting Vulnerability,"A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of the affected system. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a user of the interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the web-based management interface or allow the attacker to access sensitive browser-based information.",Cisco,Cisco Prime Network Control System,5.4,MEDIUM,0.0005499999970197678,false,,false,false,true,2024-08-05T04:15:23.000Z,,false,false,,2019-01-10T16:29:00.000Z,0
CVE-2015-0768,https://securityvulnerability.io/vulnerability/CVE-2015-0768,,"The Device Work Center (DWC) component in Cisco Prime Network Control System (NCS) 2.1(0.0.85), 2.2(0.0.58), and 2.2(0.0.69) does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login session, aka Bug ID CSCur27371.",Cisco,Prime Network Control System,,,0.0009899999713525176,false,,false,false,false,,,false,false,,2015-06-12T14:00:00.000Z,0
CVE-2012-5990,https://securityvulnerability.io/vulnerability/CVE-2012-5990,,"Multiple cross-site scripting (XSS) vulnerabilities in Health Monitor Login pages in Cisco Prime Network Control System (NCS) and Wireless Control System (WCS) allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka Bug ID CSCud18375.",Cisco,"Wireless Control System,Prime Network Control System",,,0.002409999957308173,false,,false,false,false,,,false,false,,2013-09-06T11:15:00.000Z,0
CVE-2013-1196,https://securityvulnerability.io/vulnerability/CVE-2013-1196,,"The command-line interface in Cisco Secure Access Control System (ACS), Identity Services Engine Software, Context Directory Agent, Application Networking Manager (ANM), Prime Network Control System, Prime LAN Management Solution (LMS), Prime Collaboration, Unified Provisioning Manager, Network Services Manager, Prime Data Center Network Manager (DCNM), and Quad does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406, CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422, CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.",Cisco,"Prime Network Control System,Secure Access Control System,Prime Collaboration,Prime Data Center Network Manager,Network Services Manager,Application Networking Manager,Quad,Context Directory Agent,Unified Provisioning Manager,Prime Lan Management Solution,Identity Services Engine Software",,,0.0012400000123307109,false,,false,false,false,,,false,false,,2013-04-29T21:55:00.000Z,0
CVE-2013-1170,https://securityvulnerability.io/vulnerability/CVE-2013-1170,,"The Cisco Prime Network Control System (NCS) appliance with software before 1.1.1.24 has a default password for the database user account, which makes it easier for remote attackers to change the configuration or cause a denial of service (service disruption) via unspecified vectors, aka Bug ID CSCtz30468.",Cisco,"Prime Network Control System Software,Prime Network Control System",,,0.0036899999249726534,false,,false,false,false,,,false,false,,2013-04-11T10:55:00.000Z,0
CVE-2013-1125,https://securityvulnerability.io/vulnerability/CVE-2013-1125,,"The command-line interface in Cisco Identity Services Engine Software, Secure Access Control System (ACS), Application Networking Manager (ANM), Prime LAN Management Solution (LMS), Prime Network Control System, Quad, Context Directory Agent, Prime Collaboration, Unified Provisioning Manager, and Network Services Manager does not properly validate input, which allows local users to obtain root privileges via unspecified vectors, aka Bug IDs CSCue46001, CSCud95790, CSCue46021, CSCue46025, CSCue46023, CSCue46058, CSCue46013, CSCue46031, CSCue46035, and CSCue46042.",Cisco,"Prime Network Control System,Secure Access Control System,Prime Collaboration,Network Services Manager,Application Networking Manager,Quad,Context Directory Agent,Unified Provisioning Manager,Prime Lan Management Solution,Identity Services Engine Software",,,0.0006399999838322401,false,,false,false,false,,,false,false,,2013-02-19T23:55:00.000Z,0