Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20191120-DNA-PRIV-ESCA
HistoryNov 20, 2019 - 4:00 p.m.

Cisco DNA Spaces: Connector Privilege Escalation Vulnerability

2019-11-2016:00:00
tools.cisco.com
36

0.0004 Low

EPSS

Percentile

5.2%

JSON

A vulnerability in Cisco DNA Spaces: Connector could allow an authenticated, local attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root.

The vulnerability is due to insufficient restrictions during the execution of an affected CLI command. An attacker could exploit this vulnerability by leveraging the insufficient restrictions to modify sensitive files. A successful exploit could allow the attacker to elevate privileges and execute arbitrary commands on the underlying operating system as root.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191120-dna-priv-esca [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191120-dna-priv-esca”]

Affected configurations

Vulners
Node
ciscodna_spacesMatchany
OR
ciscodna_spaces_connectorMatchany
OR
ciscodna_spacesMatchany
OR
ciscodna_spaces_connectorMatchany

Related

prion 1
cve 1
nvd 1
cvelist 1
prion
prion
Design/Logic Flaw
2019-11-26 04:15:00
cve
cve
CVE-2019-15996
2019-11-26 04:15:12
nvd
nvd
CVE-2019-15996
2019-11-26 04:15:12
cvelist
cvelist
CVE-2019-15996 Cisco DNA Spaces: Connector Privilege Escalation Vulnerability
2019-11-20 00:00:00

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for CISCO-SA-20191120-DNA-PRIV-ESCA
prion1cve1nvd1cvelist1