Lucene search
+L

CVE-2019-1619

🗓️ 27 Jun 2019 03:00:29Reported by ciscoType 
cve
 cve
🔗 web.nvd.nist.gov👁 164 Views🌐 WEB

Cisco DCNM web interface authentication bypass vulnerabilit

Related
Detection
Affected
Refs
Paths
NVD
[
  {
    "product": "Cisco Data Center Network Manager",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "11.1(1)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
tokenquery paramfm/pmreportAuthentication bypass via crafted token enabling unauthorized access (CVE-2019-1619).CWE-284CWE-798
fnamebinaryfm/fileUploadUnauthenticated file upload leading to remote code execution by uploading a WAR to Tomcat (CVE-2019-1619/CVE-2019-1620).CWE-284CWE-798
uploadDirbinaryfm/fileUploadUnauthenticated file upload leading to remote code execution by uploading a WAR to Tomcat (CVE-2019-1619/CVE-2019-1620).CWE-284CWE-798
payloadbinaryfm/fileUploadUnauthenticated file upload leading to remote code execution by uploading a WAR to Tomcat (CVE-2019-1619/CVE-2019-1620).CWE-284CWE-798
jboss*.lognestedfm/log/fmlogs.zipUsing logs to locate deployment path for WAR upload (information disclosure vector related to DCNM vulnerability).CWE-284CWE-798

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 02:28Current
9.9High risk
Vulners AI Score9.9
CVSS 27.5
CVSS 3.19.8
CVSS 39.8
EPSS0.82815
SSVC
164