CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The vulnerability of the Cisco Elastic Services Controllers network management interface, related to errors in managing registration data, allows a perpetrator to gain access to the system with administrator privileges.

The vulnerability of the Cisco Elastic Services Controllers network management interface is related to errors in managing registration data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the system with administrator privileges...

9CVSS7.6AI score0.00992EPSS

Exploits0References3Affected Software1

BDU FSTEC•added 2017/09/08 12:0 a.m.•1 views

9CVSS7.6AI score0.00992EPSS

Exploits0References3

OSV•added 2017/06/13 6:29 a.m.•2 views

CVE-2017-6697

A vulnerability in the web interface of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive system credentials that are stored in an affected system. More Information: CSCvd76339. Known Affected Releases: 2.29.76...

6.5CVSS5.8AI score

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•10 views

CVE-2017-6682

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user on an affected system. More Information: CSCvc76620. Known Affected Releases: 2.29.76...

8.8CVSS8.7AI score0.00951EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•11 views

CVE-2017-6696

A vulnerability in the file system of Cisco Elastic Services Controllers could allow an authenticated, local attacker to gain access to sensitive user credentials that are stored in an affected system. More Information: CSCvd73677. Known Affected Releases: 2.32...

5.5CVSS5.5AI score0.00067EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•7 views

CVE-2017-6683

A vulnerability in the esclistener.py script of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to execute arbitrary commands as the tomcat user on an affected system, aka an Authentication Request Processing Arbitrary Command Execution Vulnerability. More...

9CVSS9.2AI score0.09493EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•12 views

CVE-2017-6689

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

8.8CVSS8.6AI score0.00767EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•11 views

CVE-2017-6684

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux admin user, aka an Insecure Default Credentials Vulnerability. More Information: CSCvc76651. Known Affected Releases: 21.0.0...

9CVSS8.5AI score0.00992EPSS

Exploits0References2

OSV•added 2017/06/13 6:29 a.m.•2 views

CVE-2017-6696

5.5CVSS5.8AI score

Exploits0References2

OSV•added 2017/06/13 6:29 a.m.•2 views

CVE-2017-6682

8.8CVSS6AI score0.00951EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•8 views

CVE-2017-6697

6.5CVSS6.4AI score0.00204EPSS

Exploits0References2

NVD•added 2017/06/13 6:29 a.m.•10 views

CVE-2017-6688

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux root user, aka an Insecure Default Password Vulnerability. More Information: CSCvc76631. Known Affected Releases: 2.29.76...

9CVSS8.5AI score0.00992EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by