What is CVE-2019-1820?

CVE-2019-1820 is a medium-severity vulnerability in Cisco Prime Infrastructure, classified under Path Traversal. CVSS score: 6.5/10. Published 2019-05-16.

How severe is CVE-2019-1820?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Path Traversal in Cisco Prime Infrastructure

CVE-2019-1820

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network (EPN) Manager software could allow an authenticated, remote attacker to download and view files within the applicati…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.107 (93.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Cisco Prime Infrastructure — versions 3.4

Weakness classification (CWE)

CWE-22 — Path Traversal

References

20190515 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability (vendor-advisory, x_refsource_CISCO)
108345 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2019-1820?: CVE-2019-1820 is a medium-severity vulnerability in Cisco Prime Infrastructure, classified under Path Traversal. CVSS score: 6.5/10. Published 2019-05-16.
How severe is CVE-2019-1820?: Medium severity. CVSS v3 base score is 6.5 out of 10.