CVE-2018-0335

Name of the Vulnerable Software and Affected Versions Cisco Prime Collaboration Provisioning (affected versions not specified)

Description A vulnerability in the web portal authentication process could allow an unauthenticated, local attacker to view sensitive data due to improper logging of authentication data. An attacker could exploit this by monitoring a specific world-readable file for authentication data, including cleartext passwords, potentially gaining authentication information for other users.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.