CVE-2021-34733

Name of the Vulnerable Software and Affected Versions Cisco Prime Infrastructure (affected versions not specified) Cisco Evolved Programmable Network (EPN) Manager (affected versions not specified)

Description The issue is related to insufficient protection of registration data in the CLI component of the affected systems. This could allow an authenticated, local attacker to access sensitive information stored on the underlying file system of an affected system. An attacker could exploit this by gaining unauthorized access to sensitive information, potentially creating forged authentication requests and gaining unauthorized access to the affected system.

Recommendations For Cisco Prime Infrastructure, update to a version that includes the necessary security fixes to prevent unauthorized access to sensitive information. For Cisco Evolved Programmable Network (EPN) Manager, apply the recommended configuration changes to secure sensitive information stored on the underlying file system. As a temporary workaround, consider restricting access to the CLI of the affected systems to minimize the risk of exploitation.