ID:5817 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-15999

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:5817 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-15999

ID:5817 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-15999

Published: June 17, 2021


Vulnerability identifier: #VU23965
Vulnerability risk: Medium
CVE-ID: CVE-2019-15999
CWE-ID: CWE-284
Exploitation vector: Remote access
Vulnerable software:
Cisco Data Center Network Manager

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to an incorrect configuration of the authentication settings on the JBoss EAP. A remote authenticated attacker can bypass implemented security restrictions and gain unauthorized access to the JBoss EAP.


Remediation

Install updates from vendor's website.