virus logo Intrusion Prevention

Cisco.PI.EPNM.XmpLogFilesDownloadServlet.Directory.Traversal

description-logoDescription

This indicates an attack attempt to exploit a Directory Traversal Vulnerability in Cisco Systems Prime Infrastructure.
A remote, authenticated attacker can exploit this vulnerability by sending a crafted request to the Download servlet. Successful exploitation can result in disclosure of sensitive information.

affected-products-logoAffected Products

Cisco Systems Evolved Programmable Network Manager prior to 3.0.1
Cisco Systems Prime Infrastructure prior to 3.4.1
Cisco Systems Prime Infrastructure prior to 3.5
Cisco Systems Prime Infrastructure prior to 3.6

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-pi-pathtrav-1819

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-07-11 14.647 Default_action:pass:drop
2019-07-03 14.642
ID 48108
Created Jul 03, 2019
Updated Oct 07, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2019-1819
Exploit Prediction Score 0.18%
Default Action drop
Active
Affected OS Other
Affected App Cisco