3 matches found
Cisco Application Policy Infrastructure Controller Arbitrary File Read and Write (cisco-sa-capic-frw-Nt3RYxR2)
According to its self-reported version, Cisco Application Policy Infrastructure Controller is affected by a vulnerability in an API endpoint which could allow a remote, unauthenticated attacker to read or write arbitrary files on an affected system. Please see the included Cisco BIDs and Cisco...
Critical Flaw Discovered in Cisco APIC for Switches — Patch Released
Cisco Systems on Wednesday issued patches to address a critical security vulnerability affecting the Application Policy Infrastructure Controller APIC interface used in its Nexus 9000 Series Switches that could be potentially abused to read or write arbitrary files on a vulnerable system. Tracked...
CVE-2021-1577
CVE-2021-1577 affects Cisco Application Policy Infrastructure Controller (APIC) and Cloud APIC. The issue is an improper access control in an API endpoint that could let an unauthenticated, remote attacker upload a file to the device, enabling reading or writing of arbitrary files. Severity is re...