CVE-2019-1794

A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing. The vulnerability is due to uncontrolled search path elements. An attacker could exploit this vulnerability by placing a binary of their choosing earlier in the search path utilized by Cisco Directory Connector to locate and load required resources.

Severity	MEDIUM
CVSS	5.1
CWE	CWE-427
KEV
Published	7 years ago
Modified	1 year ago

Related Products

Product	Advisory	Evidence
Cisco Directory Connector	cisco-sa-20190417-cdc-hijack	Cisco OpenVuln