3 matches found
CVE-2017-6708
A vulnerability in the symbolic link symlink creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to read sensitive files or execute malicious code on an affected system. The vulnerability is due to the absence of...
CVE-2017-6708
CVE-2017-6708 affects Cisco Ultra Services Framework via the AutoVNF symlink creation function. Root cause: lack of input validation when creating symbolic links, enabling an unauthenticated, remote attacker to read sensitive files or execute code. Affected releases are all prior to 5.0.3 and 5.1...
CVE-2017-6708
A vulnerability in the symbolic link symlink creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to read sensitive files or execute malicious code on an affected system. The vulnerability is due to the absence of...