#VU13213 Information disclosure in Cisco Prime Collaboration Provisioning - CVE-2018-0335
Vulnerability identifier: #VU13213
Vulnerability risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID:
CWE-ID:
CWE-200
Exploitation vector: Local
Exploit availability: No
Vulnerable software:
Cisco Prime Collaboration Provisioning
Server applications /
Other server solutions
Vendor: Cisco Systems, Inc
Description
The vulnerability allows a local unauthenticated attacker to obtain potentially sensitive information on the target system.
The vulnerability exists in the web portal authentication process of Cisco Prime Collaboration Provisioning due to improper logging of authentication data. A local attacker can monitor a specific file for this authentication data and gain authentication information for other users.
Mitigation
Install update from vendor's website.
Vulnerable software versions
Cisco Prime Collaboration Provisioning: 12.2
External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-cpcp-id
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
