A vulnerability in the CLI of Cisco Policy Suite could allow an authenticated, local attacker to access files owned by another user. The vulnerability is due to insufficient access control permissions (i.e., World-Readable). An attacker could exploit this vulnerability by logging in to the CLI. An exploit could allow the attacker to access potentially sensitive files that are owned by a different user. Cisco Bug IDs: CSCvh18087.
History

Fri, 29 Nov 2024 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2018-07-18T23:00:00

Updated: 2024-11-29T14:50:09.421Z

Reserved: 2017-11-27T00:00:00

Link: CVE-2018-0392

cve-icon Vulnrichment

Updated: 2024-08-05T03:21:15.603Z

cve-icon NVD

Status : Modified

Published: 2018-07-18T23:29:01.150

Modified: 2024-11-21T03:38:08.013

Link: CVE-2018-0392

cve-icon Redhat

No data.