Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2017-12315
HistoryNov 16, 2017 - 7:00 a.m.

CVE-2017-12315

2017-11-1607:00:00
CWE-200
cisco
www.cve.org

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A vulnerability in system logging when replication is being configured with the Cisco HyperFlex System could allow an authenticated, local attacker to view sensitive information that should be restricted in the system log files. The attacker would have to be authenticated as an administrative user to conduct this attack. The vulnerability is due to lack of proper masking of sensitive information in system log files. An attacker could exploit this vulnerability by authenticating to the targeted device and viewing the system log file. An exploit could allow the attacker to view sensitive system information that should have been restricted. The attacker could use this information to conduct additional reconnaissance attacks. Cisco Bug IDs: CSCvg31472.

CNA Affected

[
  {
    "product": "Cisco HyperFlex System",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco HyperFlex System"
      }
    ]
  }
]

Related

cve 1
cisco 1
prion 1
nvd 1
cve
cve
CVE-2017-12315
2017-11-16 07:29:00
cisco
cisco
Cisco HyperFlex System Authenticated Information Disclosure Vulnerability
2017-11-15 16:00:00
prion
prion
Design/Logic Flaw
2017-11-16 07:29:00
nvd
nvd
CVE-2017-12315
2017-11-16 07:29:00

5.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for CVELIST:CVE-2017-12315
cve1cisco1prion1nvd1