Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-15379

A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote attacker to upload an arbitrary file. This file could allow the attacker to execute commands at the privilege level of the user prime. This user does not have administrative or root privileges. The vulnerability is due to an incorrect permission setting for important system directories. An attacker could exploit this vulnerability by uploading a malicious file by using TFTP, which can be accessed via the web-interface GUI. A successful exploit could allow the attacker to run commands on the targeted application without authentication.

Published

2018-10-05T14:29:07.013

Last Modified

2024-11-21T03:50:39.770

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Secondary
CWE-275
Type: Primary
CWE-732

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	prime_infrastructure	3.2	Yes
Application	cisco	prime_infrastructure	3.2	Yes
Application	cisco	prime_infrastructure	3.2\(0.0\)	Yes
Application	cisco	prime_infrastructure	3.2\(1.0\)	Yes
Application	cisco	prime_infrastructure	3.2\(2.0\)	Yes
Application	cisco	prime_infrastructure	3.3	Yes
Application	cisco	prime_infrastructure	3.3\(0.0\)	Yes
Application	cisco	prime_infrastructure	3.4	Yes
Application	cisco	prime_infrastructure	3.4\(0.0\)	Yes
Application	cisco	prime_infrastructure	3.5\(0.0\)	Yes

References

http://www.securityfocus.com/bid/105506 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1041816 Third Party Advisory, VDB Entry ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp Vendor Advisory ([email protected])
https://www.exploit-db.com/exploits/45555/ Exploit, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/105506 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1041816 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-pi-tftp Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/45555/ Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)