CVE-2019-15981

Name of the Vulnerable Software and Affected Versions Cisco Data Center Network Manager (DCNM) (affected versions not specified)

Description The issue concerns multiple vulnerabilities in the REST and SOAP API endpoints and the Application Framework feature of Cisco Data Center Network Manager (DCNM). These vulnerabilities could allow an authenticated, remote attacker to conduct directory traversal attacks on an affected device, potentially impacting the confidentiality, integrity, and availability of protected information. The attacker would need administrative privileges on the DCNM application to exploit these vulnerabilities. The severity of these vulnerabilities is aggravated by other vulnerabilities described in a related advisory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.