Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-0966

CWE-22 — Path Traversal5 documents4 sources

Severity

6.8MEDIUM

EPSS

34.8%

top 2.99%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Cisco Ciscoworks Common Services

Timeline

PublishedMay 20

Latest updateMay 17

Description

Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 8.0 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/ciscoworks_common_services3.3+10

🔴Vulnerability Details

GHSA

GHSA-5pm8-4cgq-c8fp: Directory traversal vulnerability in cwhp/auditLog↗2022-05-17

▶

CVEList

CVE-2011-0966: Directory traversal vulnerability in cwhp/auditLog↗2011-05-20

▶

💥Exploits & PoCs

Exploit-DB

CiscoWorks Common Services 3.1.1 - Auditing Directory Traversal↗2011-05-18

▶

Exploit-DB

Cisco Unified Operations Manager - Multiple Vulnerabilities↗2011-05-18

▶