admin/cve
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2025-05-08 11:36:33 +00:00
Code Issues Packages Projects Releases Wiki Activity
cve/2019/CVE-2019-1666.md

19 lines
982 B
Markdown
Raw Normal View History

Update Sun May 26 14:27:04 CEST 2024
2024-05-26 14:27:05 +02:00
### [CVE-2019-1666](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1666)
![](https://img.shields.io/static/v1?label=Product&message=Cisco%20HyperFlex%20HX-Series%20&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-284&color=brighgreen)
### Description
A vulnerability in the Graphite service of Cisco HyperFlex software could allow an unauthenticated, remote attacker to retrieve data from the Graphite service. The vulnerability is due to insufficient authentication controls. An attacker could exploit this vulnerability by sending crafted requests to the Graphite service. A successful exploit could allow the attacker to retrieve any statistics from the Graphite service. Versions prior to 3.5(2a) are affected.
### POC
#### Reference
No PoCs from references.
#### Github
- https://github.com/ExpLangcn/FuYao-Go
- https://github.com/fab1ano/rconfig-cves
Reference in New Issue Copy Permalink