CNNVD-202602-680 Information
CNNVD ID
CNNVD-202602-680
Related CVE
- CNNVD Published: 2026-02-04
Description (Chinese)
Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure都是美国思科(Cisco)公司的产品。Cisco Evolved Programmable Network Manager是一套网络管理解决方案。Cisco Prime Infrastructure是一个应用软件。用于简化无线和有线网络的管理。 Cisco Evolved Programmable Network Manager和Cisco Prime Infrastructure存在输入验证错误漏洞,该漏洞源于对HTTP请求参数输入验证不当,可能导致重定向到恶意网页。
Description (English)
Cisco Evolved Programable Network Manager and Cisco Prime Infrastrucure are all Cisco products. Cisco Evolved Programme Network Manager is a web-based management solution. Cisco Prime Infrastructure is an application. To simplify the management of wireless and cable networks. Cisco Evolved Programable Network Manager and Cisco Prime Infrastructure have input validation bugs, which stem from inappropriate input validation of HTTP request parameters and may lead to a redirection to malicious web pages.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
思科
Published
2026-02-04
Last Modified
2026-02-24
References
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnm-pi-redirect-6sX82dN https://access.redhat.com/security/cve/cve-2026-20123