.. / CVE-2019-1821

Exploit for Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution (CVE-2019-1821)

Description:

Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network (EPN) Manager could allow an authenticated, remote attacker to execute code with root-level privileges on the underlying operating system. This vulnerability exist because the software improperly validates user-supplied input. An attacker could exploit this vulnerability by uploading a malicious file to the administrative web interface. A successful exploit could allow the attacker to execute code with root-level privileges on the underlying operating system.

Nuclei Template

View the template here CVE-2019-1821.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2019/CVE-2019-1821.yaml

References:

https://srcincite.io/blog/2019/05/17/panic-at-the-cisco-unauthenticated-rce-in-prime-infrastructure.html
https://nvd.nist.gov/vuln/detail/CVE-2019-1821
http://packetstormsecurity.com/files/153350/Cisco-Prime-Infrastructure-Health-Monitor-TarArchive-Directory-Traversal.html
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-pi-rce
https://github.com/ARPSyndicate/kenzer-templates

.. / CVE-2019-1821 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }

Exploit for Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager - Remote Code Execution (CVE-2019-1821)

Description:

Nuclei Template

Validate with Nuclei

.. / CVE-2019-1821