Lucene search
K

11 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.156 views

Cisco Data Center Network Manager Unauthenticated File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Data Center Network Manager Unauthenticated File Download', 'Description' = %q DCNM exposes a servlet to download files on...

9.8CVSS7AI score0.82815EPSS
Exploits8
Metasploit
Metasploit
added 2020/06/22 10:11 a.m.136 views

Cisco Data Center Network Manager Unauthenticated File Download

DCNM exposes a servlet to download files on /fm/downloadServlet. An authenticated user can abuse this servlet to download arbitrary files as root by specifying the full path of the file. This module was tested on the DCNM Linux virtual appliance 10.42, 11.01 and 11.11, and should work on a few...

9.8CVSS7.1AI score0.82815EPSS
Exploits8
Openbugbounty
Openbugbounty
added 2020/01/29 11:3 p.m.6 views

crestmontcountryclub.com Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1079146 Security Researcher sardharabadal Helped patch 254 vulnerabilities Received 3 Coordinated Disclosure badges Received 3 recommendations , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting crestmontcountryclub.c...

0.3AI score
Exploits0
ThreatPost
ThreatPost
added 2019/09/26 4:26 p.m.149 views

Cisco Patches 13 High-Severity Router and Switch Bugs

Cisco Systems released patches for 29 bugs Wednesday that addressed flaws in a wide range of its products including routers and switches running the IOS XE networking software. Thirteen of the vulnerabilities revealed are rated high severity. The bulk of the high-severity vulnerabilities are tied...

10CVSS1.9AI score0.8378EPSS
Exploits8References11
Exploit DB
Exploit DB
added 2019/09/03 12:0 a.m.283 views

Cisco Data Center Network Manager - Unauthenticated Remote Code Execution (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Data Center Network Manager Unauthenticated Remote Code Execution', 'Description' = %q DCNM exposes a file upload servlet FileUploadServlet...

9.8CVSS7AI score0.82815EPSS
Exploits8
0day.today
0day.today
added 2019/09/02 12:0 a.m.60 views

Cisco Data Center Network Manager Unauthenticated Remote Code Execution Exploit

DCNM exposes a file upload servlet FileUploadServlet at /fm/fileUpload. An authenticated user can abuse this servlet to upload a WAR to the Apache Tomcat webapps directory and achieve remote code execution as root. This module exploits two other vulnerabilities, CVE-2019-1619 for authentication...

10CVSS0.8378EPSS
Exploits8
Packet Storm
Packet Storm
added 2019/09/02 12:0 a.m.310 views

Cisco Data Center Network Manager Unauthenticated Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Data Center Network Manager Unauthenticated Remote Code Execution', 'Description' = %q DCNM exposes a file upload servlet FileUploadServlet...

10CVSS0.7AI score0.8378EPSS
Exploits8
Metasploit
Metasploit
added 2019/07/12 9:2 p.m.39 views

Cisco Data Center Network Manager Unauthenticated Remote Code Execution

DCNM exposes a file upload servlet FileUploadServlet at /fm/fileUpload. An authenticated user can abuse this servlet to upload a WAR to the Apache Tomcat webapps directory and achieve remote code execution as root. This module exploits two other vulnerabilities, CVE-2019-1619 for authentication...

9.8CVSS8.5AI score0.8378EPSS
Exploits8
Circl
Circl
added 2019/06/30 2:49 p.m.19 views

CVE-2019-1619

creationtimestamp| type| source ---|---|--- 2019-06-30 14:49:06+00:00| seen| https://t.me/CyberGovIL/511 2019-07-01 12:04:50+00:00| seen| https://t.me/CyberGovIL/513 2019-09-02 15:56:25+00:00| seen|...

9.8CVSS8.6AI score0.82815EPSS
Exploits8References7
Cvelist
Cvelist
added 2019/06/27 3:0 a.m.28 views

CVE-2019-1619 Cisco Data Center Network Manager Authentication Bypass Vulnerability

A vulnerability in the web-based management interface of Cisco Data Center Network Manager DCNM could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability is due to improper session...

9.8CVSS10AI score0.82815EPSS
Exploits8References6
CVE
CVE
added 2019/06/27 3:0 a.m.162 views

CVE-2019-1619

CVE-2019-1619 affects Cisco Data Center Network Manager (DCNM) web-based management. The flaw arises from improper session management, allowing an unauthenticated attacker to bypass authentication and execute actions with administrative privileges by sending a crafted HTTP request. Connected sour...

9.8CVSS9.9AI score0.82815EPSS
Exploits8References6Affected Software1
Rows per page
Query Builder