PT-2018-8807 · Cisco · Cisco Policy Suite

Published

2018-07-18

Updated

2019-10-09

CVE-2018-0392

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Cisco Policy Suite (affected versions not specified)

Description A security issue in the CLI of Cisco Policy Suite allows an authenticated, local attacker to access files owned by another user due to insufficient access control permissions. An attacker could exploit this by logging in to the CLI, potentially accessing sensitive files owned by a different user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732CWE-275

Related Identifiers

CVE-2018-0392

Affected Products

Cisco Policy Suite

PT-2018-8807 · Cisco · Cisco Policy Suite

CVE-2018-0392

Weakness Enumeration

Related Identifiers

Affected Products

References · 4