CVE-2019-1692

Name of the Vulnerable Software and Affected Versions Cisco Application Policy Infrastructure Controller (APIC) Software (affected versions not specified)

Description A vulnerability in the web-based management interface of Cisco Application Policy Infrastructure Controller (APIC) Software could allow an unauthenticated, remote attacker to access sensitive system usage information. The issue is due to a lack of proper data protection mechanisms for certain components in the underlying Application Centric Infrastructure (ACI). An attacker could exploit this by attempting to observe certain network traffic when accessing the APIC, potentially allowing them to access and collect certain tracking data and usage statistics on an affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.