CVE-2015-4331

Cisco Prime Infrastructure (PI) 1.4(0.45) and earlier, when AAA authentication is used, allows remote authenticated users to bypass intended access restrictions via a username with a modified composition of lowercase and uppercase characters, aka Bug ID CSum59958.

Published: Aug 22, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-4331
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 3.5
AV:N/AC:M/Au:S/C:P/I:N/A:N

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
cisco / prime_infrastructure	-	1.4.0.45.x

http://tools.cisco.com/security/center/viewAlert.x?alertId=40553
http://www.securitytracker.com/id/1033356

Vulnerability Database

289,599

CVE-2015-4331