CVE-2017-12350
Cisco Umbrella Insights Virtual Appliances 2.1.0 and earlier contain undocumented hardcoded default credentials. A local, authenticated attacker can use the hypervisor console to log in as root, elevating privileges on the appliance. Root access enables a range of potential follow-on compromises;...