Panic! at the Cisco :: Unauthenticated Remote Code Execution in Cisco Prime Infrastructure
Tags
| attack-pattern: | Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 |
Common Information
| Type | Value |
|---|---|
| UUID | b9a4d591-3f0b-400b-a860-f128ae766ff5 |
| Fingerprint | ac99625129370aca |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | May 17, 2019, 3 p.m. |
| Added to db | Feb. 17, 2023, 9:57 p.m. |
| Last updated | Nov. 17, 2024, 12:58 p.m. |
| Headline | Panic! at the Cisco :: Unauthenticated Remote Code Execution in Cisco Prime Infrastructure |
| Title | Panic! at the Cisco :: Unauthenticated Remote Code Execution in Cisco Prime Infrastructure |
| Detected Hints/Tags/Attributes | 46/1/18 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 1 | cve-2019-1821 |
|
| Details | CVE | 2 | cve-2018-15379 |
|
| Details | Domain | 10 | com.cisco |
|
| Details | Domain | 2 | iter.next |
|
| Details | Domain | 1 | this.tarin.read |
|
| Details | Domain | 1 | tararchive.java |
|
| Details | Domain | 21 | poc.py |
|
| Details | File | 1 | 348-1-k9.iso |
|
| Details | File | 40 | web.xml |
|
| Details | File | 1 | 24.jar |
|
| Details | File | 6 | this.tar |
|
| Details | File | 1 | tararchive.java |
|
| Details | File | 20 | poc.py |
|
| Details | md5 | 1 | d513031f481042092d14b77cd03cbe75 |
|
| Details | md5 | 1 | 56a2acbcf31ad7c238241f701897fcb1 |
|
| Details | IPv4 | 2 | 3.4.0.0 |
|
| Details | IPv4 | 1 | 192.168.100.123 |
|
| Details | IPv4 | 8 | 192.168.100.2 |