Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Add exploit for CVE-2019-1621, Cisco Data Center Network Manager arbitrary file download. #12059
I will also put a full disclosure post up soon that contains more details, and will add the link here.
Aug 30, 2019
The Cisco Data Center Network Manager Arbitrary File Download module has been added to the framework. It targets a vulnerability in DCNM that exposes a servlet to download files on /fm/downloadServlet. An authenticated user can abuse this servlet to download arbitrary files as root by specifying the full path of the file.