CVE-2018-0335 - AskarLabs CVE Database

CVE-2018-0335

Vendor N/A

Product Cisco Prime Collaboration Provisioning unknown

Weakness CWE-200 · Info exposure

Published June 7, 2018

Last update November 29, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability in the web portal authentication process of Cisco Prime Collaboration Provisioning could allow an unauthenticated, local attacker to view sensitive data. The vulnerability is due to improper logging of authentication data. An attacker could exploit this vulnerability by monitoring a specific World-Readable file for this authentication data (Cleartext Passwords). An exploit could allow the attacker to gain authentication information for other users. Cisco Bug IDs: CSCvd86602.

Key dates

02Disclosure timeline

June 7, 2018 CVE published

November 29, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-0335 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/200.html

Related vulnerabilities

04Related CVE

CVE-2026-5847 code-projects Movie Ticketing System SQL Database Backup File moviedb.sql information disclosure CVE-2020-3347 Cisco Webex Meetings Desktop App for Windows Shared Memory Information Disclosure Vulnerability CVE-2023-41735 WordPress Email posts to subscribers Plugin <= 6.2 is vulnerable to Sensitive Data Exposure CVE-2024-30118 HCL Connections is susceptible to a sensitive information disclosure vulnerability CVE-2023-35636 Microsoft Outlook Information Disclosure Vulnerability