CVE-2019-1815

CWE-200Information Exposure3 documents3 sources
Severity
5.3MEDIUM
EPSS
0.2%
top 52.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Cisco Meraki MX Firmware
Timeline
PublishedMar 4

Description

A security vulnerability was discovered in the local status page functionality of Cisco Meraki’s MX67 and MX68 security appliance models that may allow unauthenticated individuals to access and download logs containing sensitive, privileged device information. The vulnerability is due to improper access control to the files holding debugging and maintenance information, and is only exploitable when the local status page is enabled on the device. An attacker exploiting this vulnerability may obta

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-7vrc-3785-x4qx: A security vulnerability was discovered in the local status page functionality of Cisco Meraki’s MX67 and MX68 security appliance models that may allo2025-03-04
CVEList
Cisco Meraki MX67 and MX68 Sensitive Information Disclosure Vulnerability2025-03-04
CVE-2019-1815 (MEDIUM CVSS 5.3) | A security vulnerability was discov | cvebase.io