Cisco Bug: CSCvi82327 - Prime Infrastructure Input Validation issues - sam/assurance
Apr 16, 2018
- Network Level Service
Known Affected Releases
Symptoms: This is a modification request for the product team to adopt new secure code best practices to enhance the security posture and resiliency of the product. The Cisco Product Security Baseline requirements should be followed and developed into your product in the next maintenance release cycle to help mitigate any potential vulnerabilities and to remove the risk of having this type of security issue inside of your code. Development teams are required to use the Cisco CSERV tool to go through the security requirements process. Please login to the CSERV tool here: https://cserv.cisco.com. For more information on the Cisco Product Security Baseline requirement as well as the required testing tasks please review the following links: 1.) Cisco PSB Development Requirements: http://csdl-web.cisco.com/cserv/DevTasks 2.) Cisco PSB Testing and Verification Tasks: http://csdl-web.cisco.com/cserv/VerTasks Always keep your CSDL Security Engagement Managers involved/informed. Cisco Secure Development Lifecycle SEM Org Assignments https://cisco.jiveon.com/docs/DOC-309951 Conditions: Device configured with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases