CVE-2019-1821

Name of the Vulnerable Software and Affected Versions Cisco Prime Infrastructure (affected versions not specified) Cisco Evolved Programmable Network Manager (affected versions not specified)

Description A vulnerability in the web-based management interface of the affected software could allow an authenticated, remote attacker to execute code with root-level privileges on the underlying operating system. This issue exists because the software improperly validates user-supplied input. An attacker could exploit this vulnerability by uploading a malicious file to the administrative web interface. A successful exploit could allow the attacker to execute code with root-level privileges on the underlying operating system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.