CVE-2019-1742

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description The issue is related to improper access control to files within the web UI of Cisco IOS XE Software, allowing an unauthenticated, remote attacker to access sensitive configuration information by sending a malicious request to an affected device. This could enable the attacker to gain access to sensitive configuration information.

Recommendations For Cisco IOS XE Software, update to a version that includes the fix for this issue, as software updates have been released by Cisco to address this vulnerability. At the moment, there is no information about specific versions that contain a fix for this vulnerability, but it is recommended to follow Cisco's security advisory for the most up-to-date information on resolving this issue.