Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2016-1358

Cisco Prime Infrastructure 2.2, 3.0, and 3.1(0.0) allows remote authenticated users to read arbitrary files or cause a denial of service via an XML document containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCuw81497.

  • Published: Mar 3, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-1358
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 6.4
  • AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:H

CVSS v2:

  • Severity: Medium
  • Score: 5.5
  • AV:N/AC:L/Au:S/C:P/I:N/A:P

CWEs: