THREATOPS
THREAT OPSThreat News › Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability

Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability

lowcisco_psirtPublished 2026-04-01

<p>A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access.</p> <p>This vulnerability is due to improper authorization checks on a REST API endpoint of an affected device.&nbsp;An attacker could exploit this vuln

Indicators of compromise

Original source: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-epnm-improp-auth-mUwFWUU3?vs_f=Cisco%20Security%20Advisory%26vs_cat=Security%20Intelligence%26vs_type=RSS%26vs_p=Cisco%20Evolved%20Programmable%20Network%20Manager%20Improper%20Authorization%20Vulnerability%26vs_k=1