2 matches found
Cisco Application-Hosting Framework Directory Traversal Vulnerability
A vulnerability in the web framework code of the Cisco application-hosting framework CAF component of the Cisco IOx application environment could allow an unauthenticated, remote attacker to read any file from the CAF in the virtual instance running on the affected device. SPDX-FileCopyrightText:...
CVE-2017-3851
CVE-2017-3851 is a directory-traversal vulnerability in Cisco IOx CAF: unauthenticated remote attacker can read files from the CAF web interface within the virtual instance. Affected Cisco IOx CAF versions: 1.0.0.0 and 1.1.0.0. Exploitation involves crafting requests to the CAF web interface; imp...