PT-2017-16139 · Cisco · Cisco Prime Collaboration Assurance
Publicado
2017-02-22
·
Atualizado
2017-07-25
·
CVE-2017-3843
CVSS v3.1
4.3
Média
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco Prime Collaboration Assurance version 11.5(0)
Description
A vulnerability in the file download functions could allow an authenticated, remote attacker to download system files that should be restricted.
Recommendations
For Cisco Prime Collaboration Assurance version 11.5(0), update to a version that includes the fix for this issue, as the current version allows unauthorized access to restricted system files.
Correção
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Prime Collaboration Assurance