ID:5997 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-1622

CSH
CYBERSECURITY HELP
Sign In REGISTER
 
Main Vulnerability Database Exploits ID:5997 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-1622

ID:5997 - Exploit for Improper access control in Cisco Data Center Network Manager - CVE-2019-1622

Published: June 17, 2021


Vulnerability identifier: #VU18964
Vulnerability risk: Medium
CVE-ID: CVE-2019-1622
CWE-ID: CWE-284
Exploitation vector: Remote access
Vulnerable software:
Cisco Data Center Network Manager

Link to public exploit:


Vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to sensitive information.

The vulnerability exists due to improper access controls for certain URLs on the affected software. A remote attacker can connect to the web-based management interface and request specific URLs to download log files and diagnostic information from the affected device. 


Remediation

Install updates from vendor's website.