2 matches found
CVE-2017-6679
The CVE-2017-6679 entry covers Cisco Umbrella Virtual Appliance versions 2.0.3 and earlier, which contained an undocumented encrypted remote support tunnel (SSH) that auto-initiated from the appliance to Cisco’s SSH Hubs. This tunnel allowed authorized Cisco Umbrella personnel to access the appli...
Cisco Umbrella Virtual Appliance 2.0.3 Undocumented Support Tunnel Vulnerability
Cisco Umbrella Virtual Appliance versions 2.0.3 and below contain an undocumented, auto-initiated reverse SSH tunnel which allows the Cisco Umbrella support team to have persistent and unrestricted access to the virtual appliance. Cisco Umbrella Virtual Appliance - Undocumented Support Tunnel...