← voltar
CVE-2018-0258

CVE-2018-0258

EPSS 49.9%CWE-22
Vexday Risk Score
15Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 49.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
02 mai 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following products: Cisco Prime Data Center Network Manager (DCNM) Version 10.0 and later, and Cisco Prime Infrastructure (PI) All versions. Cisco Bug IDs: CSCvf32411, CSCvf81727.
Produtos afetados
n/a · Cisco Prime File Upload Servlet

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-prime-uploadhttps://www.tenable.com/security/research/tra-2018-11http://www.securityfocus.com/bid/104074