Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2017-6796
HistorySep 07, 2017 - 9:00 p.m.

CVE-2017-6796

2017-09-0721:00:00
CWE-78
cisco
www.cve.org
5

EPSS

0.001

Percentile

19.8%

JSON

A vulnerability in the USB-modem code of Cisco IOS XE Software running on Cisco ASR 920 Series Aggregation Services Routers could allow an authenticated, local attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. The vulnerability is due to improper input validation of the platform usb modem command in the CLI of the affected software. An attacker could exploit this vulnerability by modifying the platform usb modem command in the CLI of an affected device. A successful exploit could allow the attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. Cisco Bug IDs: CSCve48949.

CNA Affected

[
  {
    "product": "Cisco IOS XE",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco IOS XE"
      }
    ]
  }
]

Related

prion 1
cve 1
nvd 1
cisco 1
prion
prion
Input validation
2017-09-07 21:29:00
cve
cve
CVE-2017-6796
2017-09-07 21:29:01
nvd
nvd
CVE-2017-6796
2017-09-07 21:29:01
cisco
cisco
Cisco IOS XE Software for Cisco ASR 920 Series Routers Arbitrary Command Execution Vulnerability
2017-09-06 16:00:00

EPSS

0.001

Percentile

19.8%

JSON
Related for CVELIST:CVE-2017-6796
prion1cve1nvd1cisco1