Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
770
Views
10
Helpful
1
Replies

Prime Infrastructure Cross-Site Scripting Vulnerability

nstr1
Level 1
Level 1

‎01-16-2020 08:01 AM - edited ‎07-05-2021 11:33 AM


I have a prime infrastructure with version 3.4 and I found this URL

 

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-pi-xss-12713

 

I can not update because it is affecting version 3.7 and earlier

It says there is no solution, how can I protect my prime with the latest version 3.4 patch?

Labels:
0 Helpful
1 Reply 1

Scott Fella
Hall of Fame
Hall of Fame

‎01-16-2020 08:50 AM

The vulnerability is medium so and if your PI is in an isolated subnet, I don’t see any issue. You should talk to your Cisco SE and get feedback if this will ever be fixed in future release or ask them how this affects. Your deployment or not. You can always open a TAC case and also see what they say.
-Scott
*** Please rate helpful posts ***
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card