Lucene search
CiscoCISCO-SA-20170621-PCP4HistoryJun 21, 2017 - 4:00 p.m.
Cisco Prime Collaboration Provisioning Tool Log File Information Disclosure Vulnerability
2017-06-2116:00:00
tools.cisco.com
8
0.001 Low
EPSS
Percentile
24.2%
A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire sensitive information.
The vulnerability is due to the logging of sensitive details of specific user actions. An attacker could exploit this vulnerability by accessing specific system log files.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp4 [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp4”]
Affected configurations
Node
ciscoprime_collaboration_provisioningMatchany
ORciscoprime_collaboration_provisioningMatchany
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco prime collaboration provisioning | eq | any | |
| cisco prime collaboration provisioning | eq | any |
Related
cve
cve
CVE-2017-6706
2017-07-04 00:29:00
prion
prion
Design/Logic Flaw
2017-07-04 00:29:00
cvelist
cvelist
CVE-2017-6706
2017-07-04 00:00:00
nvd
nvd
CVE-2017-6706
2017-07-04 00:29:00