CVE-2015-6401

EIP tracks 1 public exploit for CVE-2015-6401. PoCs published by Patryk Bogdan.

AI-analyzed exploit summary This PoC demonstrates multiple vulnerabilities in Cisco EPC3928, including unauthorized command execution, XSS (stored and reflective), DoS, and information disclosure. It provides HTTP requests to exploit these flaws, confirming their validity.

Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allow remote attackers to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP request, aka Bug ID CSCux24941.