Cisco Prime File Upload Servlet Remote Code Execution (CVE-2018-0258)

A remote code execution vulnerability has been reported in Cisco Prime File Upload Servlet. This is due to improper input validation of the parameters in the HTTP request and a processing error in the role-based access control RBAC of URLs. A remote attacker could exploit this vulnerability by...

Path traversal

A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload arbitrary files to any directory of a vulnerable device aka Path Traversal and execute those files. This vulnerability affects the following products: Cisco Prime Data...