2 matches found
CVE-2018-0152
A vulnerability in the web-based user interface web UI of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability exists because the affected software does not reset the privilege level for each web UI session. An...
CVE-2018-0152
Summary (CVE-2018-0152) Cisco IOS XE Software web UI privilege escalation arises because the web UI session does not reset the privilege level. An authenticated remote attacker could remotely access a device via a VTY line and assume the privileges of the previously logged-in user. Affected relea...