Cisco Prime Collaboration Provisioning Hard-Coded Password Vulnerability (cisco-sa-20180307-cpcp
Medium Nessus Plugin ID 107259
SynopsisThe remote network management server is affected by a hard-coded password vulnerability.
DescriptionAccording to its self-reported version number, the remote Cisco Prime Collaboration Provisioning server is 11.6. It is, therefore, affected by a hard-coded password vulnerability which an attacker could use to obtain low-level privileges and subsequently escalate to root.
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
SolutionUpgrade to Cisco Prime Collaboration Provisioning version 12.1 or later.