Cisco Data Center Network Manager is vulnerable to an authenticated arbitrary file upload, which allows to upload a WAR file to the Apache Tomcat webapps directory.
The Apache Tomcat webapps directory can be determined using a information disclosure vulnerability.
Authentication can be bypassed on versions 10.4(2) and below.
The Apache Tomcat webapps directory can be determined using a information disclosure vulnerability.
Authentication can be bypassed on versions 10.4(2) and below.
CVE Link
Exploit Type - Old
Exploits/Remote File Inclusion/Known Vulnerabilities
Exploit Type
Product Name