Information disclosure

2017-06-1306:29:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.2(9.76) 2.3(1).

CPENameOperatorVersion
elastic_services_controllereq2.31.0
elastic_services_controllereq2.29.76

CPE	Name	Operator	Version
	elastic_services_controller	eq	2.31.0
	elastic_services_controller	eq	2.29.76

References

www.securityfocus.com/bid/98985

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-esc7