← back
CVE-2019-1960

Cisco Enterprise NFV Infrastructure Software Arbitrary File Read Vulnerabilities

CVSS 4.4 MEDIUMEPSS 0.4%CWE-20
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 4.4EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
08 Aug 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Multiple vulnerabilities in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to read arbitrary files on the underlying operating system (OS) of an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N