CVE-2017-12276
CVE-2017-12276 is a high-severity vulnerability in Cisco Prime Collaboration Provisioning with a CVSS 3.x base score of 8.1. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-89.
Key facts
- Severity: High (CVSS 3.x base score 8.1)
- CVSS v2: 5.5
- EPSS exploit prediction: 1% (70th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-89
- Affected product: Cisco Prime Collaboration Provisioning
- Published:
- Last modified:
Description
A vulnerability in the web framework code for the SQL database interface of the Cisco Prime Collaboration Provisioning application could allow an authenticated, remote attacker to impact the confidentiality and integrity of the application by executing arbitrary SQL queries, aka SQL Injection. The attacker could read or write information from the SQL database. The vulnerability is due to a lack of proper validation on user-supplied input within SQL queries. An attacker could exploit this vulnerability by sending crafted URLs that contain malicious SQL statements to the affected application. An exploit could allow the attacker to determine the presence of certain values and write malicious input in the SQL database. The attacker would need to have valid user credentials. This vulnerability affects Cisco Prime Collaboration Provisioning Software Releases prior to 12.3. Cisco Bug IDs: CSCvf47935.
Frequently asked questions
- What is CVE-2017-12276?
- A vulnerability in the web framework code for the SQL database interface of the Cisco Prime Collaboration Provisioning application could allow an authenticated, remote attacker to impact the confidentiality and integrity of the application by executing arbitrary SQL queries, aka SQL Injection. The attacker could read or write information from the SQL database. The vulnerability is due to a lack of proper validation on user-supplied input within SQL queries. An attacker could exploit this vulnerability by sending crafted URLs that contain malicious SQL statements to the affected application. An exploit could allow the attacker to determine the presence of certain values and write malicious input in the SQL database. The attacker would need to have valid user credentials. This vulnerability affects Cisco Prime Collaboration Provisioning Software Releases prior to 12.3. Cisco Bug IDs: CSCvf47935.
- How severe is CVE-2017-12276?
- CVE-2017-12276 has a CVSS 3.x base score of 8.1, rated high severity. It is exploitable over network with low attack complexity, requires low privileges and no user interaction. Impact on confidentiality is high, integrity high, and availability none.
- Is CVE-2017-12276 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 1% (70th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2017-12276?
- CVE-2017-12276 affects Cisco Prime Collaboration Provisioning. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2017-12276?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its high severity, prioritise patching exposed systems.
- When was CVE-2017-12276 published?
- CVE-2017-12276 was published on 2017-11-02 and last updated on 2026-06-17.
References
- http://www.securityfocus.com/bid/101640
- http://www.securitytracker.com/id/1039711
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-cpcp
Affected products (1)
- cpe:2.3:a:cisco:prime_collaboration_provisioning:*:*:*:*:*:*:*:*
More vulnerabilities in Cisco Prime Collaboration Provisioning
- CVE-2018-0321 — Critical (CVSS 9.8): A vulnerability in Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to…
- CVE-2018-0320 — Critical (CVSS 9.8): A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an…
- CVE-2018-0319 — Critical (CVSS 9.8): A vulnerability in the password recovery function of Cisco Prime Collaboration Provisioning (PCP) could allow an…
- CVE-2018-0318 — Critical (CVSS 9.8): A vulnerability in the password reset function of Cisco Prime Collaboration Provisioning (PCP) could allow an…
- CVE-2017-6622 — Critical (CVSS 9.8): A vulnerability in the web interface for Cisco Prime Collaboration Provisioning could allow an unauthenticated, remote…
- CVE-2016-1416 — Critical (CVSS 9.8): Cisco Prime Collaboration Provisioning 10.6 SP2 (aka 10.6.0.10602) mishandles LDAP authentication, which allows remote…
All CVEs affecting Cisco Prime Collaboration Provisioning →
Other CWE-89 (SQL Injection) vulnerabilities
- CVE-2026-54350 — Critical (CVSS 10.0): Budibase is an open-source low-code platform. Prior to 3.39.12, an unauthenticated visitor of any published Budibase…
- CVE-2026-8054 — Critical (CVSS 10.0): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in the Publish Audit API endpoints…
- CVE-2026-42287 — Critical (CVSS 10.0): Emlog is an open source website building system. Prior to version 2.6.11, direct SQL injection in article creation and…
- CVE-2026-3325 — Critical (CVSS 10.0): SQL injection (SQLi) in MegaCMS v12.0.0, specifically in the “id_territorio” parameter of the…
- CVE-2025-10878 — Critical (CVSS 10.0): A SQL injection vulnerability exists in the login functionality of Fikir Odalari AdminPando 1.0.1 before 2026-01-26.…
- CVE-2025-57792 — Critical (CVSS 10.0): Explorance Blue versions prior to 8.14.9 contain a SQL injection vulnerability caused by insufficient validation of…