Unrated severityNVD Advisory· Published Jun 7, 2018· Updated Nov 29, 2024

CVE-2018-0335

Description

A vulnerability in the web portal authentication process of Cisco Prime Collaboration Provisioning could allow an unauthenticated, local attacker to view sensitive data. The vulnerability is due to improper logging of authentication data. An attacker could exploit this vulnerability by monitoring a specific World-Readable file for this authentication data (Cleartext Passwords). An exploit could allow the attacker to gain authentication information for other users. Cisco Bug IDs: CSCvd86602.

Affected products

Chatwoot/Cisco Prime Collaboration Provisioning Unknownv5
Range: Cisco Prime Collaboration Provisioning unknown

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/104473mitrevdb-entryx_refsource_BID
www.securitytracker.com/id/1041069mitrevdb-entryx_refsource_SECTRACK
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-cpcp-idmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000