CVE-2019-1794
published 2019-04-18CVE-2019-1794: A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing. The…
medium5.1CVSS 3.1
AVLACLPRHUINSUCLIHAN
A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing. The vulnerability is due to uncontrolled search path elements. An attacker could exploit this vulnerability by placing a binary of their choosing earlier in the search path utilized by Cisco Directory Connector to locate and load required resources.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_directory_connector | — | — |
| cisco | directory_connector_search_order | — | — |
| cisco | meeting_server | — | — |