Lucene search

K
CiscoUltra Services Framework

6 matches found

CVE
CVE
added 2017/06/13 6:29 a.m.47 views

CVE-2017-6681

A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to execute a relative path traversal attack, enabling an attacker to read sensitive files on the system. More Information: CSCvc76662. Known Affected Releases: 21.0....

7.5CVSS7.6AI score0.03078EPSS
CVE
CVE
added 2017/07/06 12:29 a.m.47 views

CVE-2017-6709

A vulnerability in the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to access administrative credentials for Cisco Elastic Services Controller (ESC) and Cisco OpenStack deployments in an affected system. The vulnerability exists because the aff...

9.8CVSS9.3AI score0.00507EPSS
CVE
CVE
added 2017/07/06 12:29 a.m.45 views

CVE-2017-6711

A vulnerability in the Ultra Automation Service (UAS) of the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to gain unauthorized access to a targeted device. The vulnerability is due to an insecure default configuration of the Apache ZooKeeper service used by the aff...

9.1CVSS9.1AI score0.00436EPSS
CVE
CVE
added 2017/07/06 12:29 a.m.38 views

CVE-2017-6708

A vulnerability in the symbolic link (symlink) creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to read sensitive files or execute malicious code on an affected system. The vulnerability is due to the absence of valida...

9.8CVSS9.4AI score0.00566EPSS
CVE
CVE
added 2017/08/17 8:29 p.m.38 views

CVE-2017-6771

A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to acquire sensitive information. The vulnerability is due to insufficient protection of sensitive data. An attacker could exploit this vulnerability by browsing to a...

7.5CVSS7.3AI score0.00408EPSS
CVE
CVE
added 2017/06/13 6:29 a.m.33 views

CVE-2017-6680

A vulnerability in the AutoVNF logging function of Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to create arbitrary directories on the affected system. More Information: CSCvc76652. Known Affected Releases: 21.0.0.

7.5CVSS7.5AI score0.00326EPSS