CVE-2015-0666

2015-04-0310:59:00

CWE-22

[email protected]

web.nvd.nist.gov

838

In Wild

cve-2015-0666

directory traversal

vulnerability

cisco prime

dcnm

nvd

6.4 Medium

AI Score

Confidence

Low

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:C/I:N/A:N

0.974 High

EPSS

Percentile

99.9%

JSON

Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.

CPENameOperatorVersion
cisco:prime_data_center_network_managercisco prime data center network managereq6.3\(1\)
cisco:prime_data_center_network_managercisco prime data center network managereq6.3\(2\)
cisco:prime_data_center_network_managercisco prime data center network managereq7.0\(1\)
cisco:prime_data_center_network_managercisco prime data center network managerle7.0\(2\)

CPE	Name	Operator	Version
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	6.3\(1\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	6.3\(2\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	eq	7.0\(1\)
cisco:prime_data_center_network_manager	cisco prime data center network manager	le	7.0\(2\)