Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NCisco Prime Data Center Network Manager
APPCisco6.3\(1\)6.3\(2\)7.0\(1\)≤ 7.0\(2\)
CISA KEV — szczegółyi
- Dostawcai
- Cisco ↗
- Produkti
- Prime Data Center Network Manager (DCNM)
- Data dodania do KEVi
- 25 marca 2022
- Termin remediation (USA)i
- 15 kwietnia 2022(po terminie)
Zastosuj aktualizacje zgodnie z instrukcjami dostawcy.
▸ Pokaż oryginał (EN)
Apply updates per vendor instructions.
Luka directory traversal w serwlecie fmserver w oprogramowaniu Cisco Prime Data Center Network Manager (DCNM) umożliwia atakującym zdalnym odczyt dowolnych plików.
▸ Pokaż oryginał (EN)
Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) allows remote attackers to read arbitrary files.
Powiązane podatności
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote ...
A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, rem...
A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center Network Manag...
A vulnerability in Cisco Data Center Network Manager software could allow an authenticated, remote attacker to...
Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Networ...