7 matches found
Cisco Prime Data Center Network Manager Remote Code Execution (CVE-2019-1620)
A remote code execution vulnerability exists in Cisco Prime Data Center Network Manager. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Cisco Patches 13 High-Severity Router and Switch Bugs
Cisco Systems released patches for 29 bugs Wednesday that addressed flaws in a wide range of its products including routers and switches running the IOS XE networking software. Thirteen of the vulnerabilities revealed are rated high severity. The bulk of the high-severity vulnerabilities are tied...
Cisco Data Center Network Manager - Unauthenticated Remote Code Execution (Metasploit)
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Data Center Network Manager Unauthenticated Remote Code Execution', 'Description' = %q DCNM exposes a file upload servlet FileUploadServlet...
Cisco Data Center Network Manager Arbitrary File Upload and Remote Code Execution Vulnerability
According to its self-reported version, Cisco Data Center Network Manager is affected by a vulnerability in the web-based management interface. An attacker could exploit this vulnerability by uploading specially crafted data to the affected device. A successful exploit could allow the attacker to...
CVE-2019-1620
creationtimestamp| type| source ---|---|--- 2019-06-27 10:42:33+00:00| seen| https://t.me/informationsecuritychannel/28840 2019-06-30 14:49:06+00:00| seen| https://t.me/CyberGovIL/511 2019-07-01 12:04:50+00:00| seen| https://t.me/CyberGovIL/513 2019-09-02 15:56:25+00:00| seen|...
CVE-2019-1620
Cisco Data Center Network Manager (DCNM) is affected by CVE-2019-1620: an unauthenticated attacker can upload arbitrary files via the web-based management interface due to improper permissions, enabling filesystem write access and root-level code execution. Public disclosures and exploits exist (...
Cisco Prime Data Center Network Manager FileUploadServlet Arbitrary File Upload (CVE-2013-5486; CVE-2019-1620)
An arbitrary file upload vulnerability exists in Cisco Prime Data Center Network Manager. The vulnerability is due to lack of authentication and insufficient input validation in the FileUploadServlet when processing HTTP requests. A remote unauthenticated attacker can upload arbitrary files to...