CVE-2017-6679

🗓️ 01 Dec 2017 00:00:00Reported by ciscoType

Cisco Umbrella Virtual Appliance contained undocumented encrypted remote support tunnel, allowing unauthorized remote access

Reporter	Title	Published	Views	Family All 8
0day.today	Cisco Umbrella Virtual Appliance 2.0.3 Undocumented Support Tunnel Vulnerability	24 Oct 201700:00	–	zdt
Cisco	Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability	16 Aug 202316:00	–	cisco
CNVD	Cisco Umbrella Virtual Appliance Unauthorized Access Vulnerability	30 Oct 201700:00	–	cnvd
Cvelist	CVE-2017-6679	1 Dec 201700:00	–	cvelist
EUVD	EUVD-2017-15733	7 Oct 202500:30	–	euvd
NVD	CVE-2017-6679	1 Dec 201717:29	–	nvd
Prion	Design/Logic Flaw	1 Dec 201717:29	–	prion
Positive Technologies	PT-2017-4252 · Cisco · Cisco Umbrella +1	1 Dec 201700:00	–	ptsecurity

NVD

Node

cisco umbrellaRange≤2.0.3

[
  {
    "vendor": "n/a",
    "product": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior",
    "versions": [
      {
        "version": "Cisco Umbrella Virtual Appliance Version 2.0.3 and prior",
        "status": "affected"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/101567
sec	www.sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE
support	www.support.umbrella.com/hc/en-us/articles/115004154423
support	www.support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15
info-sec	www.info-sec.ca/advisories/Cisco-Umbrella.html

13 May 2026 00:24Current

6.4Medium risk

Vulners AI Score6.4

CVSS 26

CVSS 36.4

EPSS0.00113