Ben Sina

**Name of the Vulnerable Software and Affected Versions** Cisco IoT Field Network Director (affected versions not specified) **Description** Improper error handling in the web-based management interface allows an authenticated remote attacker with low privileges to cause a denial of service (DoS) condition on a remotely managed router. By submitting crafted input to the interface, an attacker can request unauthorized files from a remote router, triggering a router reload. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco IoT Field Network Director (affected versions not specified) **Description** Insufficient file access checks in the web-based management interface allow an authenticated, remote attacker with low privileges to retrieve files they are not authorized to access by submitting crafted input. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco IoT Field Network Director (affected versions not specified) **Description** Insufficient input validation of user-supplied data in the web-based management interface allows an authenticated remote attacker with low privileges to submit crafted input. This could enable the attacker to access, create, read, or delete files and execute limited commands in user EXEC mode on a remote router. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.