CNNVD-202509-262 Information
CNNVD ID
CNNVD-202509-262
Related CVE
- CNNVD Published: 2025-09-03
Description (Chinese)
Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure都是美国思科(Cisco)公司的产品。Cisco Evolved Programmable Network Manager是一套网络管理解决方案。Cisco Prime Infrastructure是一个应用软件。用于简化无线和有线网络的管理。 Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure存在信息泄露漏洞,该漏洞源于对API端点请求验证不当,可能导致敏感信息泄露。
Description (English)
Cisco Evolved Programable Network Manager and Cisco Prime Infrastrucure are all Cisco products. Cisco Evolved Programme Network Manager is a web-based management solution. Cisco Prime Infrastructure is an application. To simplify the management of wireless and cable networks. Cisco Evolved Programable Network Manager and Cisco Prime Infrastructure have information leaks, which stem from inadequate validation of API endpoint requests and may lead to the disclosure of sensitive information.
Hazard Level
High
Vulnerability Type
信息泄露
Affected Vendor
Citadel
Published
2025-09-03
Last Modified
2026-02-24
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnm-info-dis-zhPPMfgz https://vigilance.fr/vulnerability/Cisco-Prime-Infrastructure-information-disclosure-via-Management-Interface-48124