Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2019-1821 — Improper Input Validation in Cisco Evolved Programmable Network Manager

CWE-20 — Improper Input Validation9 documents8 sources

Severity

9.8CRITICALNVD

CNA8.8VulnCheck8.8

EPSS

94.0%

top 0.10%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Cisco Evolved Programmable Network Manager Cisco Prime Infrastructure Cisco Prime Infrastructure +1 more

Timeline

PublishedMay 16

Latest updateMay 24

Description

A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to execute code with root-level privileges on the underlying operating system. This vulnerability exist because the software improperly validates user-supplied input. An attacker could exploit this vulnerability by uploading a malicious file to the administrative web interface. A successful exploit could allow …

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶NVDcisco/evolved_programmable_network_manager< 3.0.1

▶NVDcisco/network_level_service3.0\(0.0.83b\)

▶NVDcisco/prime_infrastructure< 3.4.1

▶CVEListV5cisco/cisco_prime_infrastructure3.4

🔴Vulnerability Details

GHSA

GHSA-4mx6-fjqc-4rhr: A vulnerability in the web-based management interface of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could al↗2022-05-24

▶

CVEList

Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerabilities↗2019-05-16

▶

VulnCheck

Cisco evolved_programmable_network_manager Improper Input Validation↗2019

▶

💥Exploits & PoCs

Exploit-DB

Cisco Prime Infrastructure Health Monitor - TarArchive Directory Traversal (Metasploit)↗2019-06-20

▶

Exploit-DB

Cisco Prime Infrastructure Health Monitor HA TarArchive - Directory Traversal / Remote Code Execution↗2019-05-17

▶

Nuclei

Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS Cisco Prime Infrastruture RCE - CVE-2019-1821↗2019-05-20

▶

📋Vendor Advisories

Cisco

Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerabilities↗2019-05-15

▶