2 matches found
CVE-2019-1919
The CVE-2019-1919 issue affects Cisco FindIT Network Manager/FindIT Network Probe Release 1.1.4 when using Cisco-supplied VM images. A static root-level account exists in the underlying Linux OS, enabling an unauthenticated, local attacker with VM-console access to log in as root. Other releases ...
CVE-2017-6614
Cisco FindIT Network Probe Software 1.0.0 is affected by CVE-2017-6614 due to missing RBAC for file-download requests in its web UI. An authenticated, remote attacker could send a crafted HTTP request to download and view arbitrary system files using the affected software. Exploitation details an...