CyberSec.Space Logo
Back to CVE Browser

CVE-2015-0666

Known Exploited (CISA KEV)HIGH
7.5
CVSS Severity Score
EPSS Score73.4560%
EPSS Percentile96.25th
PublishedApr 3, 2015
Last ModifiedApr 22, 2026

Vulnerability Description

Directory traversal vulnerability in the fmserver servlet in Cisco Prime Data Center Network Manager (DCNM) before 7.1(1) allows remote attackers to read arbitrary files via a crafted pathname, aka Bug ID CSCus00241.

Affected Platforms (CPE)

πŸ“¦
Cisco

Prime Data Center Network Manager

<= 7.0\(2\)
πŸ“¦
Cisco

Prime Data Center Network Manager

= 6.3\(1\)
πŸ“¦
Cisco

Prime Data Center Network Manager

= 6.3\(2\)
πŸ“¦
Cisco

Prime Data Center Network Manager

= 7.0\(1\)

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-dcnm
πŸ”— http://www.securitytracker.com/id/1032009
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150401-dcnm
πŸ”— http://www.securitytracker.com/id/1032009
πŸ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2015-0666

Related Vulnerabilities

CVE-2012-541710.0

Cisco Prime Data Center Network Manager (DCNM) before 6.1(1) does not properly restrict access to certain JBoss MainDeployer funct...

CVE-2013-548610.0

Directory traversal vulnerability in processImageSave.jsp in DCNM-SAN Server in Cisco Prime Data Center Network Manager (DCNM) bef...

CVE-2017-66399.8

A vulnerability in the role-based access control (RBAC) functionality of Cisco Prime Data Center Network Manager (DCNM) could allo...

CVE-2017-66409.8

A vulnerability in Cisco Prime Data Center Network Manager (DCNM) Software could allow an unauthenticated, remote attacker to log ...