2 matches found
CVE-2018-0392
CVE-2018-0392 affects Cisco Policy Suite: a local, authenticated attacker can access files owned by another user due to world-readable permissions in the CLI. Root cause is insufficient access controls. Exploitation requires logging into the CLI; impact is exposure of potentially sensitive user-o...
CVE-2018-0392
A vulnerability in the CLI of Cisco Policy Suite could allow an authenticated, local attacker to access files owned by another user. The vulnerability is due to insufficient access control permissions i.e., World-Readable. An attacker could exploit this vulnerability by logging in to the CLI. An...