cvedb.io
CVE-2018-0376
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-07-18T23:29:00.867 · Last modified 2026-06-17T01:30:37.483

Summary

A vulnerability in the Policy Builder interface of Cisco Policy Suite before 18.2.0 could allow an unauthenticated, remote attacker to access the Policy Builder interface. The vulnerability is due to a lack of authentication. An attacker could exploit this vulnerability by accessing the Policy Builder interface. A successful exploit could allow the attacker to make changes to existing repositories and create new repositories. Cisco Bug IDs: CSCvi35109.

Affected products

cisco — mobility_services_engine

Does this affect you?

Add your gear to cvedb and we'll alert you only when cisco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.