CVE-2018-0258

CVE-2018-0258

Vendor N/A
Product Cisco Prime File Upload Servlet
Weakness CWE-22 · Path traversal
Published May 2, 2018
Last update November 29, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in the Cisco Prime File Upload servlet affecting multiple Cisco products could allow a remote attacker to upload arbitrary files to any directory of a vulnerable device (aka Path Traversal) and execute those files. This vulnerability affects the following products: Cisco Prime Data Center Network Manager (DCNM) Version 10.0 and later, and Cisco Prime Infrastructure (PI) All versions. Cisco Bug IDs: CSCvf32411, CSCvf81727.

Key dates

02Disclosure timeline

May 2, 2018 CVE published
November 29, 2024 Record updated