Enrico Milanese

**Name of the Vulnerable Software and Affected Versions** Cisco AppDynamics Controller Software (affected versions not specified) **Description** A vulnerability in the web-based management interface of Cisco AppDynamics Controller Software could allow an unauthenticated, remote attacker to access a configuration file and the login page for an administrative console. This issue is due to improper authorization checking for HTTP requests submitted to the affected interface. An attacker could exploit this by sending a crafted HTTP request to an affected instance, potentially allowing access to the administrative console's login page. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.