Cisco Integrated Management Controller Intelligent Platform Management Interface information disclosure – DigitalMunition




Exploit Cybersecurity study of the dark web exposes vulnerability to machine identities -- ScienceDaily

Published on August 22nd, 2019 📆 | 3777 Views ⚑

0

Cisco Integrated Management Controller Intelligent Platform Management Interface information disclosure

CVSS Meta Temp Score Current Exploit Price (≈)
5.1 $0-$5k

A vulnerability, which was classified as problematic, has been found in Cisco Integrated Management Controller (affected version not known). Affected by this issue is an unknown code of the component Intelligent Platform Management Interface. The manipulation with an unknown input leads to a information disclosure vulnerability. Using CWE to declare the problem leads to CWE-200. Impacted is confidentiality.

The weakness was shared 08/21/2019 as cisco-sa-20190821-imc-infodisc as confirmed advisory (Website). The advisory is shared for download at tools.cisco.com. This vulnerability is handled as CVE-2019-1908 since 12/06/2018. The attack may be launched remotely. No form of authentication is required for exploitation. There are neither technical details nor an exploit publicly available. The current price for an exploit might be approx. USD $0-$5k (estimation calculated on 08/22/2019).

Upgrading eliminates this vulnerability.

The entries 140563, 140562, 140561 and 140560 are related to this item.

Vendor

Name

VulDB Meta Base Score: 5.3
VulDB Meta Temp Score: 5.1

VulDB Base Score: 5.3
VulDB Temp Score: 5.1
VulDB Vector: 🔒
VulDB Reliability: 🔍


VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Class: Information disclosure (CWE-200)
Local: No
Remote: Yes

Availability: 🔒
Status: Not defined

Price Prediction: 🔍
Current Price Estimation: 🔒

Threat Intelligenceinfoedit

Threat: 🔍
Adversaries: 🔍
Geopolitics: 🔍
Economy: 🔍
Predictions: 🔍
Remediation: 🔍Recommended: Upgrade
Status: 🔍

0-Day Time: 🔒

12/06/2018 CVE assigned
08/21/2019 +258 days Advisory disclosed
08/22/2019 +1 days VulDB entry created
08/22/2019 +0 days VulDB last updateVendor: cisco.com

Advisory: cisco-sa-20190821-imc-infodisc
Status: Confirmed

CVE: CVE-2019-1908 (🔒)
See also: 🔒

Created: 08/22/2019 09:41 AM
Complete: 🔍

Comments

No comments yet. Please log in to comment.

Check our Alexa App!

https://vuldb.com/?id.140564

Download WordPress Themes Free
Download Best WordPress Themes Free Download
Download WordPress Themes
Download WordPress Themes
free download udemy course

Tagged with:



Leave a Reply ✍


loading...