Guest

Preview Tool

Cisco Bug: CSCvi82327 - Prime Infrastructure Input Validation issues - sam/assurance

Last Modified

Apr 16, 2018

Products (1)

  • Network Level Service

Known Affected Releases

3.4

Description (partial)

Symptoms:
This is a modification request for the product team to adopt new secure code best practices to 
enhance the security posture and resiliency of the product.
The Cisco Product Security Baseline requirements should be followed and developed 
into your product in the next maintenance release cycle to help mitigate any potential 
vulnerabilities and to remove the risk of having this type of security issue inside of your code.

Development teams are required to use the Cisco CSERV tool to go through the security requirements process.
Please login to the CSERV tool here: https://cserv.cisco.com.

For more information on the Cisco Product Security Baseline requirement as well 
as the required testing tasks please review the following links:
1.) Cisco PSB Development Requirements: http://csdl-web.cisco.com/cserv/DevTasks
2.) Cisco PSB Testing and Verification Tasks: http://csdl-web.cisco.com/cserv/VerTasks

Always keep your CSDL Security Engagement Managers involved/informed.

Cisco Secure Development Lifecycle SEM Org Assignments
https://cisco.jiveon.com/docs/DOC-309951


Conditions:
Device configured with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.