← volver
CVE-2018-0258

CVE-2018-0258

EPSS 49.9%CWE-22
Vexday Risk Score
15Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 49.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
02 may 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following products: Cisco Prime Data Center Network Manager (DCNM) Version 10.0 and later, and Cisco Prime Infrastructure (PI) All versions. Cisco Bug IDs: CSCvf32411, CSCvf81727.
Productos afectados
n/a · Cisco Prime File Upload Servlet

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-prime-uploadhttps://www.tenable.com/security/research/tra-2018-11http://www.securityfocus.com/bid/104074