A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following products: Cisco Prime Data Center Network Manager (DCNM) Version 10.0 and later, and Cisco Prime Infrastructure (PI) All versions. Cisco Bug IDs: CSCvf32411, CSCvf81727.
[
{
"product": "Cisco Prime File Upload Servlet",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Cisco Prime File Upload Servlet"
}
]
}
]