Lucene search

[email protected]CVE-2017-6783

HistoryAug 17, 2017 - 8:29 p.m.

CVE-2017-6783

2017-08-1720:29:00

CWE-200

[email protected]

web.nvd.nist.gov

vulnerability

snmp polling

cisco

web security appliance

email security appliance

content security management appliance

cve-2017-6783

nvd

exploit

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.4%

JSON

A vulnerability in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) could allow an authenticated, remote attacker to discover confidential information about the appliances that should be available only to an administrative user. The vulnerability occurs because the appliances do not protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. An attacker could exploit this vulnerability by doing a crafted SNMP poll request to the targeted security appliance. An exploit could allow the attacker to discover confidential information that should be restricted, and the attacker could use this information to conduct additional reconnaissance. The attacker must know the configured SNMP community string to exploit this vulnerability. Cisco Bug IDs: CSCve26106, CSCve26202, CSCve26224. Known Affected Releases: 10.0.0-230 (Web Security Appliance), 9.7.2-065 (Email Security Appliance), and 10.1.0-037 (Content Security Management Appliance).

Affected configurations

NVD

Node

ciscocontent_security_management_applianceMatch10.1.0-037

ciscoemail_security_applianceMatch9.7.2-065

ciscoweb_security_applianceMatch10.0.0-230

CPENameOperatorVersion
cisco:content_security_management_appliancecisco content security management applianceeq10.1.0-037
cisco:email_security_appliancecisco email security applianceeq9.7.2-065
cisco:web_security_appliancecisco web security applianceeq10.0.0-230

CPE	Name	Operator	Version
cisco:content_security_management_appliance	cisco content security management appliance	eq	10.1.0-037
cisco:email_security_appliance	cisco email security appliance	eq	9.7.2-065
cisco:web_security_appliance	cisco web security appliance	eq	10.0.0-230

CNA Affected

[
  {
    "product": "Web Security Appliance (WSA)",
    "vendor": "Cisco Systems, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "10.0.0-230"
      }
    ]
  },
  {
    "product": "Email Security Appliance (ESA)",
    "vendor": "Cisco Systems, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "9.7.2-065"
      }
    ]
  },
  {
    "product": "Content Security Management Appliance (SMA)",
    "vendor": "Cisco Systems, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "10.1.0-037"
      }
    ]
  }
]

References

www.securityfocus.com/bid/100387

www.securitytracker.com/id/1039186

www.securitytracker.com/id/1039187

www.securitytracker.com/id/1039188

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa

4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:N/A:N

4.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

4.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.4%

JSON

Related for CVE-2017-6783

prion1 cvelist1 cisco1 openvas3 nvd1