CVE CVE-2019-1794 Mappings

A vulnerability in the search path processing of Cisco Directory Connector could allow an authenticated, local attacker to load a binary of their choosing. The vulnerability is due to uncontrolled search path elements. An attacker could exploit this vulnerability by placing a binary of their choosing earlier in the search path utilized by Cisco Directory Connector to locate and load required resources.


Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2019-1794 Cisco Directory Connector primary_impact T1574.008 Path Interception by Search Order Hijacking
CVE-2019-1794 Cisco Directory Connector exploitation_technique T1078 Valid Accounts