Directory Traversal Vulnerability in Cisco Prime Data Center Network Manager
CVE-2015-0666
Key Information:
- Vendor
Cisco
- Vendor
- CVE Published:
- 3 April 2015
Badges
What is CVE-2015-0666?
A directory traversal vulnerability exists in the fmserver servlet of Cisco Prime Data Center Network Manager (DCNM) before version 7.1(1). This flaw allows remote attackers to exploit the system by crafting specific pathnames, enabling unauthorized reading of arbitrary files. Such vulnerabilities pose significant risks as they can potentially lead to the exposure of sensitive data and system configuration. Organizations utilizing this product should review the advisory from Cisco and apply the necessary updates to mitigate potential threats.
CISA has reported CVE-2015-0666
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2015-0666 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace
The CISA's recommendation is: Apply updates per vendor instructions.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.
References
EPSS Score
53% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- πΎ
Exploit known to exist
- π¦
CISA Reported
Vulnerability published
Vulnerability Reserved