|
249481
|
9.8 |
CRITICAL
Network
|
cisco
|
ultra_services_framework_staging_server
|
A vulnerability in the AutoIT service of Cisco Ultra Services Framework Staging Server could allow an unauthenticated, remote attacker to execute arbitrary shell commands as the Linux root user. The …
|
CWE-78
OS Command
|
CVE-2017-6714
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249482
|
9.8 |
CRITICAL
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the Play Framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to gain full access to the affected system. The vulnerability is due t…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-6713
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249483
|
8.8 |
HIGH
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in certain commands of Cisco Elastic Services Controller could allow an authenticated, remote attacker to elevate privileges to root and run dangerous commands on the server. The vuln…
|
CWE-78
OS Command
|
CVE-2017-6712
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249484
|
9.1 |
CRITICAL
Network
|
cisco
|
ultra_services_framework
|
A vulnerability in the Ultra Automation Service (UAS) of the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to gain unauthorized access to a targeted device. The vulne…
|
CWE-287
Improper Authentication
|
CVE-2017-6711
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249485
|
9.8 |
CRITICAL
Network
|
cisco
|
ultra_services_framework
|
A vulnerability in the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to access administrative credentials for Cisco Elastic Services Controller (…
|
CWE-532
CWE-522
Inclusion of Sensitive Information in Log Files
Insufficiently Protected Credentials
|
CVE-2017-6709
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249486
|
9.8 |
CRITICAL
Network
|
cisco
|
ultra_services_framework
|
A vulnerability in the symbolic link (symlink) creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to read sensitive file…
|
CWE-200
Information Exposure
|
CVE-2017-6708
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249487
|
8.2 |
HIGH
Local
|
cisco
|
staros
|
A vulnerability in the CLI command-parsing code of the Cisco StarOS operating system for Cisco ASR 5000 Series 11.0 through 21.0, 5500 Series, and 5700 Series devices and Cisco Virtualized Packet Cor…
|
CWE-78
OS Command
|
CVE-2017-6707
|
2024-11-21 12:30 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249488
|
6.1 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interf…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6725
|
2024-11-21 12:30 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249489
|
6.1 |
MEDIUM
Network
|
cisco
|
prime_infrastructure
|
A vulnerability in the web framework code of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interf…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6724
|
2024-11-21 12:30 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249490
|
6.1 |
MEDIUM
Network
|
cisco
|
unified_contact_center_express
|
A vulnerability in the Extensible Messaging and Presence Protocol (XMPP) service of Cisco Unified Contact Center Express (UCCx) could allow an unauthenticated, remote attacker to masquerade as a legi…
|
CWE-287
Improper Authentication
|
CVE-2017-6722
|
2024-11-21 12:30 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
