threat
engine
.sh
Back
·
··:··
Home
/
Product
/
cisco prime infrastructure
Product
cisco prime infrastructure
88 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-20123
<= 3.9
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
4.3
MEDIUM
CVE-2026-20111
<= 3.9
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker
4.8
MEDIUM
CVE-2026-20075
<= 3.9
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
4.8
MEDIUM
CVE-2025-20280
<= 3.9
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
4.8
MEDIUM
CVE-2025-20270
<= 3.9
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
4.3
MEDIUM
CVE-2025-20269
<= 3.9
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
6.5
MEDIUM
CVE-2025-20272
all versions
A vulnerability in a subset of REST APIs of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could
4.3
MEDIUM
CVE-2025-20203
all versions
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
4.8
MEDIUM
CVE-2025-20120
all versions
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
6.1
MEDIUM
CVE-2022-20657
all versions
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an unauthenticated, remote
6.1
MEDIUM
CVE-2022-20656
all versions
A vulnerability in the web-based management interface of Cisco PI and Cisco EPNM could allow an authenticated, remote at
6.5
MEDIUM
CVE-2024-20514
< 3.10.6
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrast
5.4
MEDIUM
CVE-2023-20271
< 3.10.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager
6.5
MEDIUM
CVE-2023-20260
< 3.10.4
A vulnerability in the application CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager could allow an
6.0
MEDIUM
CVE-2023-20258
< 3.10.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker
6.5
MEDIUM
CVE-2023-20257
< 3.10.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker
4.8
MEDIUM
CVE-2023-44487
< 3.10.4
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams q
7.5
HIGH
CVE-2023-20222
<= 3.10
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager
4.8
MEDIUM
CVE-2023-20205
< 3.10.4
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
5.4
MEDIUM
CVE-2023-20203
< 3.10.4
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
5.4
MEDIUM
CVE-2023-20201
< 3.10.4
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
4.8
MEDIUM
CVE-2023-20121
< 3.10.4
Multiple vulnerabilities in the restricted shell of Cisco Evolved Programmable Network Manager (EPNM), Cisco Identity Services Eng
6.0
MEDIUM
CVE-2023-20131
<= 3.7
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
6.5
MEDIUM
CVE-2023-20130
<= 3.7
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
6.5
MEDIUM
CVE-2023-20129
<= 3.7
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
6.5
MEDIUM
CVE-2023-20127
<= 3.7
Multiple vulnerabilities in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Networ
6.5
MEDIUM
CVE-2023-20068
< 3.10.3
A vulnerability in the web-based management interface of Cisco Prime Infrastructure Software could allow an unauthenticated, remot
6.1
MEDIUM
CVE-2023-20069
< 3.10.3
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) M
5.4
MEDIUM
CVE-2022-20659
< 3.10
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) M
6.1
MEDIUM
CVE-2021-34784
< 3.10
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Ma
5.4
MEDIUM
CVE-2021-34733
< 3.8
A vulnerability in the CLI of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allow an authe
5.5
MEDIUM
CVE-2021-1487
< 3.9
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Evolved Programmable Network (EPN) Manager
8.8
HIGH
CVE-2021-1306
< 3.8.1
A vulnerability in the restricted shell of Cisco Evolved Programmable Network (EPN) Manager, Cisco Identity Services Engine (ISE),
4.4
MEDIUM
CVE-2020-3339
<= 3.7.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker
5.4
MEDIUM
CVE-2019-15958
< 3.4.2
A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could all
9.8
CRITICAL
CVE-2019-12713
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacke
6.1
MEDIUM
CVE-2019-12712
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacke
6.1
MEDIUM
CVE-2019-1906
all versions
A vulnerability in the Virtual Domain system of Cisco Prime Infrastructure (PI) could allow an authenticated, remote attacker to c
6.5
MEDIUM
CVE-2019-1825
< 3.4.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E
8.1
HIGH
CVE-2019-1824
< 3.4.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E
8.1
HIGH
CVE-2019-1823
< 3.4.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E
8.8
HIGH
CVE-2019-1822
< 3.4.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E
7.2
HIGH
CVE-2019-1821
< 3.4.1
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (E
8.8
HIGH
CVE-2019-1820
< 3.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) M
6.5
MEDIUM
CVE-2019-1819
< 3.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) M
6.5
MEDIUM
CVE-2019-1818
< 3.4
A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) M
6.5
MEDIUM
CVE-2019-1659
>= 2.2 and <= 3.4.0
A vulnerability in the Identity Services Engine (ISE) integration feature of Cisco Prime Infrastructure (PI) could allow an unauth
7.4
HIGH
CVE-2019-1643
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacke
6.1
MEDIUM
CVE-2018-15457
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacke
6.1
MEDIUM
CVE-2018-0482
all versions
A vulnerability in the web-based management interface of Cisco Prime Network Control System could allow an authenticated, remote a
5.4
MEDIUM
CVE-2018-15433
all versions
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote attacker to view
4.3
MEDIUM
CVE-2018-15432
all versions
A vulnerability in the server backup function of Cisco Prime Infrastructure could allow an authenticated, remote attacker to view
4.3
MEDIUM
CVE-2018-15379
all versions
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allo
9.8
CRITICAL
CVE-2018-0258
all versions
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload a
9.8
CRITICAL
CVE-2018-0097
all versions
A vulnerability in the web interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to redirect a u
6.1
MEDIUM
CVE-2018-0096
all versions
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Infrastructure could allow an authenticated,
5.9
MEDIUM
CVE-2017-6782
all versions
A vulnerability in the administrative web interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to
5.4
MEDIUM
CVE-2017-6725
all versions
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct
6.1
MEDIUM
CVE-2017-6724
all versions
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct
6.1
MEDIUM
CVE-2017-6700
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager
6.1
MEDIUM
CVE-2017-6699
all versions
A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager
6.1
MEDIUM
CVE-2017-6698
all versions
A vulnerability in the Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) SQL database interface coul
5.4
MEDIUM
CVE-2017-6662
all versions
A vulnerability in the web-based user interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM)
8.0
HIGH
CVE-2017-6611
all versions
A vulnerability in the web framework code of Cisco Prime Infrastructure 2.2(2) could allow an unauthenticated, remote attacker to
6.1
MEDIUM
CVE-2017-3884
all versions
A vulnerability in the web interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager could allo
6.5
MEDIUM
CVE-2017-3848
all versions
A vulnerability in the HTTP web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote at
6.1
MEDIUM
CVE-2017-3869
all versions
An API Credentials Management vulnerability in the APIs for Cisco Prime Infrastructure could allow an authenticated, remote attack
5.4
MEDIUM
CVE-2016-6443
all versions
A vulnerability in the Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL database interface could allow an a
8.8
HIGH
CVE-2016-1474
all versions
Cisco Prime Infrastructure 2.2(2) does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to
4.3
MEDIUM
CVE-2016-1442
all versions
The administrative web interface in Cisco Prime Infrastructure (PI) before 3.1.1 allows remote authenticated users to execute arbi
8.8
HIGH
CVE-2016-1408
all versions
Cisco Prime Infrastructure 1.2 through 3.1 and Evolved Programmable Network Manager (EPNM) 1.2 and 2.0 allow remote authenticated
8.8
HIGH
CVE-2016-1289
all versions
The API in Cisco Prime Infrastructure 1.2 through 3.0 and Evolved Programmable Network Manager (EPNM) 1.2 allows remote attackers
9.8
CRITICAL
CVE-2016-1406
all versions
The API web interface in Cisco Prime Infrastructure before 3.1 and Cisco Evolved Programmable Network Manager before 1.2.4 allows
8.8
HIGH
CVE-2016-1291
all versions
Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allow remote attackers t
9.8
CRITICAL
CVE-2016-1290
all versions
The web API in Cisco Prime Infrastructure 1.2.0 through 2.2(2) and Cisco Evolved Programmable Network Manager (EPNM) 1.2 allows re
8.1
HIGH
CVE-2016-1359
all versions
Cisco Prime Infrastructure 3.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP request that is mish
8.8
HIGH
CVE-2016-1358
all versions
Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of s
6.4
MEDIUM
CVE-2015-6434
all versions
Cisco Prime Infrastructure does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduc
6.1
MEDIUM
CVE-2015-6332
all versions
Cisco Prime Infrastructure 2.2 allows remote attackers to cause a denial of service (daemon hang) by sending many SSL renegotiatio
CVE-2015-6262
all versions
Cross-site request forgery (CSRF) vulnerability in Cisco Prime Infrastructure 1.2(0.103) and 2.0(0.0) allows remote attackers to h
CVE-2015-4331
<= 1.4.0.45
Cisco Prime Infrastructure (PI) 1.4(0.45) and earlier, when AAA authentication is used, allows remote authenticated users to bypas
CVE-2014-2153
all versions
Multiple cross-site scripting (XSS) vulnerabilities in INSERT pages in Cisco Prime Infrastructure allow remote attackers to inject
CVE-2014-2152
all versions
Cross-site request forgery (CSRF) vulnerability in the INSERT page in Cisco Prime Infrastructure (PI) allows remote attackers to h
CVE-2014-2147
<= 2.1
The web interface in Cisco Prime Infrastructure 2.1 and earlier does not properly restrict use of IFRAME elements, which makes it
CVE-2014-8007
all versions
Cisco Prime Infrastructure allows remote authenticated users to read device-discovery passwords by examining the HTML source code
CVE-2014-0679
all versions
Cisco Prime Infrastructure 1.2 and 1.3 before 1.3.0.20-2, 1.4 before 1.4.0.45-2, and 2.0 before 2.0.0.0.294-2 allows remote authen
CVE-2013-1247
all versions
Cross-site scripting (XSS) vulnerability in the wireless configuration module in Cisco Prime Infrastructure allows remote attacker
CVE-2013-1153
all versions
Cross-site request forgery (CSRF) vulnerability in the web interface in Cisco Prime Infrastructure allows remote attackers to hija
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin