Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20181107-PCA-OVERWRITE
HistoryNov 07, 2018 - 4:00 p.m.

Cisco Prime Collaboration Assurance File Overwrite Vulnerability

2018-11-0716:00:00
tools.cisco.com
565

EPSS

0.001

Percentile

32.5%

JSON

A vulnerability in the web-based UI of Cisco Prime Collaboration Assurance could allow an authenticated, remote attacker to overwrite files on the file system.

The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by using a specific UI input field to provide a custom path location. A successful exploit could allow the attacker to overwrite files on the file system.

There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-pca-overwrite [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-pca-overwrite”]

Affected configurations

Vulners
Node
ciscoprime_collaboration_assuranceMatchany
OR
ciscoprime_collaboration_assuranceMatchany
VendorProductVersionCPE
ciscoprime_collaboration_assuranceanycpe:2.3:a:cisco:prime_collaboration_assurance:any:*:*:*:*:*:*:*

Related

cvelist 1
prion 1
cve 1
nvd 1
cvelist
cvelist
CVE-2018-15450 Cisco Prime Collaboration Assurance File Overwrite Vulnerability
2018-11-08 20:00:00
prion
prion
Input validation
2018-11-08 20:29:00
cve
cve
CVE-2018-15450
2018-11-08 20:29:00
nvd
nvd
CVE-2018-15450
2018-11-08 20:29:00

EPSS

0.001

Percentile

32.5%

JSON
Related for CISCO-SA-20181107-PCA-OVERWRITE
cvelist1prion1cve1nvd1