CVE-2016-1360

high

Description

Cisco Prime LAN Management Solution (LMS) through 4.2.5 uses the same database decryption key across different customers' installations, which allows local users to obtain cleartext data by leveraging console connectivity, aka Bug ID CSCuw85390.

References

http://www.securitytracker.com/id/1035313

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160310-prime-lms

Details

Source: Mitre, NVD

Published: 2016-03-12

Updated: 2026-05-06

Risk Information

CVSS v2

Base Score: 3

Vector: CVSS2#AV:L/AC:M/Au:S/C:P/I:P/A:N

Severity: Low

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Severity: High

EPSS

EPSS: 0.00188

Detections

Analytics