CVE-2017-6602

🗓️ 07 Apr 2017 17:00:00Reported by ciscoType

A vulnerability in CLI of Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance allows authenticated local attacker to perform command injection attack

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability of the Cisco Firepower Extensible Operating System and the Cisco Unified Computing System Central device management system allows a intruder to inject arbitrary commands.	20 Apr 201700:00	–	bdu_fstec
Cisco	Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance CLI Command Injection Vulnerability	5 Apr 201716:00	–	cisco
CNVD	CLI Command Injection Vulnerability in Multiple Cisco Products	14 Apr 201700:00	–	cnvd
CVE	CVE-2017-6602	7 Apr 201717:00	–	cve
EUVD	EUVD-2017-15656	7 Oct 202500:30	–	euvd
NVD	CVE-2017-6602	7 Apr 201717:59	–	nvd
OSV	CVE-2017-6602	7 Apr 201717:59	–	osv
Prion	Command injection	7 Apr 201717:59	–	prion

[
  {
    "product": "Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-cli2
securitytracker	www.securitytracker.com/id/1038197
securityfocus	www.securityfocus.com/bid/97472

11 Jul 2017 09:57Current

5.6Medium risk

Vulners AI Score5.6

EPSS0.00262