Lucene search
+L

113 matches found

Prion
Prion
added 2017/06/13 6:29 a.m.15 views

Design/Logic Flaw

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to run arbitrary commands as the Linux tomcat user on an affected system. More Information: CSCvc76620. Known Affected Releases: 2.29.76...

6.5CVSS8.5AI score0.02207EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/06/13 6:29 a.m.14 views

Default credentials

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

6.5CVSS8.5AI score0.01499EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/06/13 6:29 a.m.14 views

Information disclosure

A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.29.76...

2.1CVSS5.2AI score0.00275EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/06/13 6:29 a.m.14 views

Design/Logic Flaw

A vulnerability in the ConfD server in Cisco Ultra Services Platform could allow an authenticated, local attacker to view sensitive information. More Information: CSCvd29398. Known Affected Releases: 21.0.v0.65839...

2.1CVSS5.2AI score0.00307EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/06/13 6:0 a.m.51 views

CVE-2017-6691

CVE-2017-6691 affects Cisco Elastic Services Controller (ESC) and its ConfD CLI. The issue arises from improper permissions on certain files in the affected service, enabling an authenticated, remote attacker to access sensitive information on the system. Affected release noted: ESC 2.3(2). Cisco...

6.5CVSS6.3AI score0.01203EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/06/13 6:0 a.m.44 views

CVE-2017-6695

CVE-2017-6695 affects Cisco Ultra Services Platform’s ConfD server. An authenticated, local attacker can view sensitive information due to insufficient protection of sensitive files. Affected release: 21.0.v0.65839. CVSS details: CVSSv2 base 2.1 (LOW) with Partial confidentiality impact; CVSSv3 b...

5.5CVSS5.3AI score0.00307EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/06/13 6:0 a.m.48 views

CVE-2017-6689

CVE-2017-6689 is a Cisco Elastic Services Controller vulnerability affecting the ConfD CLI, caused by a default, hard-coded admin password. An authenticated remote attacker could log in as admin (SSH port 2024) on affected systems. Known affected release: 2.2(9.76). Cisco advisory notes there are...

8.8CVSS8.5AI score0.01499EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/06/13 6:0 a.m.15 views

CVE-2017-6693

A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.29.76...

5.2AI score0.00275EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/06/13 6:0 a.m.20 views

CVE-2017-6691

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive information on an affected system. More Information: CSCvd29403. Known Affected Releases: 2.32...

6.3AI score0.01203EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/06/13 6:0 a.m.21 views

CVE-2017-6695

A vulnerability in the ConfD server in Cisco Ultra Services Platform could allow an authenticated, local attacker to view sensitive information. More Information: CSCvd29398. Known Affected Releases: 21.0.v0.65839...

5.3AI score0.00307EPSS
Exploits0References2
Cisco
Cisco
added 2017/06/07 4:0 p.m.39 views

Cisco Elastic Services Controller Unauthorized Directory Access Vulnerability

A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system. The vulnerability exists because the affected component does not sufficiently protect files that...

4.4CVSS5.2AI score0.00275EPSS
Exploits0References1
Cisco
Cisco
added 2017/06/07 4:0 p.m.47 views

Cisco Ultra Services Platform Information Disclosure Vulnerability

A vulnerability in the ConfD server in Cisco Ultra Services Platform could allow an authenticated, local attacker to view sensitive information. The vulnerability is due to insufficient protection of sensitive files on the system. An attacker could exploit this vulnerability by logging in to the...

5.5CVSS5.2AI score0.00307EPSS
Exploits0References1
Cisco
Cisco
added 2017/06/07 4:0 p.m.47 views

Cisco Elastic Services Controller Information Disclosure Vulnerability

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to access sensitive information on an affected system. The vulnerability is due to improper permissions that are set for certain files by the affected service. An attacker could...

4.3CVSS6.5AI score0.01203EPSS
Exploits0References1
Rows per page
Query Builder