CVE-2015-0666

Currently unrated

Key Information:

Vendor: Cisco
Status: Prime Data Center Network Manager
Vendor: CVE Published:; 3 April 2015

Badges

👾 Exploit Exists🟣 EPSS 97%🦅 CISA Reported

Summary

Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply updates per vendor instructions.

References

http://www.securitytracker.com/id/1032009

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

EPSS Score

97% chance of being exploited in the next 30 days.

Timeline

👾
Exploit known to exist
Mar 25, 2022
🦅
CISA Reported
Mar 25, 2022
Vulnerability published
Apr 3, 2015
Vulnerability Reserved
Jan 7, 2015