Unrated severityNVD Advisory· Published Dec 19, 2019· Updated Aug 5, 2024
CVE-2019-18181
CVE-2019-18181
Description
In CloudVision Portal all releases in the 2018.1 and 2018.2 Code train allows users with read-only permissions to bypass permissions for restricted functionality via CVP API calls through the Configlet Builder modules. This vulnerability can potentially enable authenticated users with read-only access to take actions that are otherwise restricted in the GUI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- CloudVision/CloudVision Portaldescription
- Range: 2018.1 and 2018.2 code train
Patches
Vulnerability mechanics
References
1- www.arista.com/en/support/advisories-notices/security-advisories/9001-security-advisory-44mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.