CVE-2019-1619

CRITICAL

Cisco Data Center Network Manager - Unauthenticated Remote Code Execution via Improper Session Management

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2019-1619. PoCs published by Cipolone95, including Metasploit module exploits/multi/http/cisco_dcnm_upload_2019.

AI-analyzed exploit summary This repository contains a PowerShell script that automates the generation of a token required to exploit CVE-2019-1619, an authentication bypass vulnerability in Cisco Data Center Network Manager (DCNM). The script constructs a token using a timestamp, session ID, and a hardcoded secret key, which can then be used to bypass authentication.

Description

A vulnerability in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability is due to improper session management on affected DCNM software. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected device. A successful exploit could allow the attacker to gain administrative access on the affected device.

Exploits (4)

nomisec WORKING POC
by Cipolone95 · poc
https://github.com/Cipolone95/CVE-2019-1619

This repository contains a PowerShell script that automates the generation of a token required to exploit CVE-2019-1619, an authentication bypass vulnerability in Cisco Data Center Network Manager (DCNM). The script constructs a token using a timestamp, session ID, and a hardcoded secret key, which can then be used to bypass authentication.

Classification
Working Poc 90%
Attack Type
Auth Bypass
Complexity
Moderate
Reliability
Reliable
Target: Cisco Data Center Network Manager (DCNM)
No auth needed
Prerequisites: Access to the target server's HTTP response headers to extract the timestamp
devstral-2 · analyzed Feb 18, 2026 Full analysis →
metasploit WORKING POC EXCELLENT
rubypocjava
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/cisco_dcnm_upload_2019.rb

This Metasploit module exploits CVE-2019-1619, an authentication bypass vulnerability in Cisco Data Center Network Manager (DCNM), to achieve unauthenticated remote code execution by uploading a malicious WAR file to the Apache Tomcat webapps directory. It also leverages CVE-2019-1622 for information disclosure to determine the correct upload path.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Cisco Data Center Network Manager (DCNM) versions 10.4(2) and below, 11.0(1), 11.1(1)
No auth needed
Prerequisites: Network access to the target · Target must be running a vulnerable version of DCNM
devstral-2 · analyzed Apr 30, 2026 Full analysis →
exploitdb WORKING POC
rubyremotejava
https://www.exploit-db.com/exploits/47347

This Metasploit module exploits CVE-2019-1619, an authentication bypass vulnerability in Cisco Data Center Network Manager (DCNM), to achieve unauthenticated remote code execution by uploading a malicious WAR file to the Apache Tomcat webapps directory. It also leverages CVE-2019-1622 for information disclosure to determine the correct upload path.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Cisco Data Center Network Manager (DCNM) versions 10.4(2) and below, 11.0(1), 11.1(1)
No auth needed
Prerequisites: Network access to the DCNM interface · DCNM version vulnerable to CVE-2019-1619
devstral-2 · analyzed Feb 19, 2026 Full analysis →
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/networking/cisco_dcnm_download.rb

This Metasploit module exploits an unauthenticated file download vulnerability in Cisco Data Center Network Manager (DCNM) by abusing the `/fm/downloadServlet` endpoint to retrieve arbitrary files as root. It includes authentication bypass techniques for versions 10.4(2) and 11.1(1), while version 11.0(1) requires valid credentials.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Cisco Data Center Network Manager (DCNM) versions 10.4(2), 11.0(1), and 11.1(1)
No auth needed
Prerequisites: Network access to the target DCNM instance · Knowledge of the file path to download
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/108902
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2019/Jul/11
Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Jul/7

Scores

CVSS v3 9.8
EPSS 0.7140
EPSS Percentile 98.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-284 CWE-798
Status published
Products (1)
cisco/data_center_network_manager 10.4\(2\)
Published Jun 27, 2019
Tracked Since Feb 18, 2026