CVE-2016-1393

CVE Database · CVE-2016-1393

CVE-2016-1393

· N/AModified

CVSS v3.1

N/A

EPSS

0.86%

Published

May 11, 2016

Modified

May 6, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

SQL injection vulnerability in Cisco Cloud Network Automation Provisioner (CNAP) 1.0 and 1.1 allows remote authenticated users to execute arbitrary SQL commands via a crafted URL, aka Bug ID CSCuy72175.

Weaknesses (CWE)

CWE-89

Affected Products (2)

cisco · cloud_network_automation_provisionervulnerable

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160510-cnap

Vendor Advisory

http://www.securityfocus.com/bid/90519

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160510-cnap

Vendor Advisory

http://www.securityfocus.com/bid/90519

KEV Catalog EPSS Scores Vendors All CVEs