CNNVD-202602-682 Information

CNNVD ID

CNNVD-202602-682

Related CVE

CVE-2026-20111

• CNNVD Published: 2026-02-04

Description (Chinese)

Cisco Prime Infrastructure是美国思科（Cisco）公司的一个应用软件。用于简化无线和有线网络的管理。 Cisco Prime Infrastructure存在信任管理问题漏洞，该漏洞源于基于Web的管理界面未正确验证用户输入，可能导致存储型跨站脚本攻击。

Description (English)

Cisco Prime Infrastructure is an application of Cisco. To simplify the management of wireless and cable networks. Cisco Prime Infrastructure has a trust management gap, which stems from the fact that Web-based management interface does not correctly validate user input and may result in a storage-type cross-site script attack.

Hazard Level

High

Vulnerability Type

信任管理问题

Affected Vendor

思科

Published

2026-02-04

Last Modified

2026-02-24

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-xss-bYeVKCD https://access.redhat.com/security/cve/cve-2026-20111

Patch

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pi-xss-bYeVKCD