|
248951
|
4.3 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote attacker to view sensitive information. The vulnerability is due to insufficient protection of sensitiv…
|
CWE-200
Information Exposure
|
CVE-2017-6772
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248952
|
7.5 |
HIGH
Network
|
cisco
|
ultra_services_framework
|
A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to acquire sensitive information. The vulnerability is due to insu…
|
CWE-200
Information Exposure
|
CVE-2017-6771
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248953
|
7.8 |
HIGH
Local
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in the build procedure for certain executable system files installed at boot time on Cisco Application Policy Infrastructure Controller (APIC) devices could allow an authenticated, lo…
|
CWE-426
Untrusted Search Path
|
CVE-2017-6768
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248954
|
7.1 |
HIGH
Network
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote attacker to gain higher privileges than the account is assigned. The attacker will be…
|
CWE-269
Improper Privilege Management
|
CVE-2017-6767
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248955
|
8.1 |
HIGH
Network
|
cisco
|
virtual_network_function_element_manager
|
A vulnerability in the Cisco Virtual Network Function (VNF) Element Manager could allow an authenticated, remote attacker to elevate privileges and run commands in the context of the root user on the…
|
CWE-78
OS Command
|
CVE-2017-6710
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248956
|
7.4 |
HIGH
Network
|
siemens
|
ozw772_firmware
ozw672_firmware
|
A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle…
|
NVD-CWE-noinfo
|
CVE-2017-6873
|
2024-11-21 12:30 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248957
|
6.5 |
MEDIUM
Network
|
siemens
|
ozw772_firmware
ozw672_firmware
|
A vulnerability was discovered in Siemens OZW672 (all versions) and OZW772 (all versions) that could allow an attacker with access to port 21/tcp to access or alter historical measurement data stored…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2017-6872
|
2024-11-21 12:30 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248958
|
5.4 |
MEDIUM
Physics
|
siemens
|
simatic_wincc_sm\@rtclient
simatic_wincc_sm\@rtclient_lite
|
A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). An attack…
|
CWE-287
Improper Authentication
|
CVE-2017-6871
|
2024-11-21 12:30 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248959
|
7.4 |
HIGH
Network
|
siemens
|
simatic_wincc_sm\@rtclient
|
A vulnerability was discovered in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2). The existing TLS protocol implementation could allow an attacker to read and modify dat…
|
NVD-CWE-noinfo
|
CVE-2017-6870
|
2024-11-21 12:30 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248960
|
9.8 |
CRITICAL
Network
|
siemens
|
viewport_for_web_office_portal
|
A vulnerability was discovered in Siemens ViewPort for Web Office Portal before revision number 1453 that could allow an unauthenticated remote user to upload arbitrary code and execute it with the p…
|
NVD-CWE-noinfo
|
CVE-2017-6869
|
2024-11-21 12:30 |
2017-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
