|
249031
|
5.3 |
MEDIUM
Local
|
cisco
|
policy_suite
|
A vulnerability in the management of shell user accounts for Cisco Policy Suite (CPS) Software for CPS appliances could allow an authenticated, local attacker to gain elevated privileges on an affect…
|
CWE-287
Improper Authentication
|
CVE-2017-6781
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249032
|
6.5 |
MEDIUM
Network
|
cisco
|
ultra_services_platform
|
A vulnerability in the Elastic Services Controller (ESC) web interface of the Cisco Ultra Services Platform could allow an authenticated, remote attacker to acquire sensitive information. The vulnera…
|
CWE-200
Information Exposure
|
CVE-2017-6778
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249033
|
4.9 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an authenticated, remote attacker to acquire sensitive system information. The vulnerability is due to i…
|
CWE-200
Information Exposure
|
CVE-2017-6777
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249034
|
6.1 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in the web framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the we…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6776
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249035
|
5.7 |
MEDIUM
Local
|
cisco
|
asr_5000_software
|
A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, local attacker to elevate their privileges to a…
|
NVD-CWE-noinfo
|
CVE-2017-6775
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249036
|
5.0 |
MEDIUM
Network
|
cisco
|
asr_5000_software
|
A vulnerability in Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, remote attacker to overwrite or modify sensitive system fi…
|
CWE-552
Files or Directories Accessible to External Parties
|
CVE-2017-6774
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249037
|
6.7 |
MEDIUM
Local
|
cisco
|
asr_5000_software
|
A vulnerability in the CLI of Cisco ASR 5000 Series Aggregated Services Routers running the Cisco StarOS operating system could allow an authenticated, local attacker to bypass the CLI restrictions a…
|
CWE-20
Improper Input Validation
|
CVE-2017-6773
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249038
|
4.3 |
MEDIUM
Network
|
cisco
|
elastic_services_controller
|
A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote attacker to view sensitive information. The vulnerability is due to insufficient protection of sensitiv…
|
CWE-200
Information Exposure
|
CVE-2017-6772
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249039
|
7.5 |
HIGH
Network
|
cisco
|
ultra_services_framework
|
A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to acquire sensitive information. The vulnerability is due to insu…
|
CWE-200
Information Exposure
|
CVE-2017-6771
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249040
|
7.8 |
HIGH
Local
|
cisco
|
application_policy_infrastructure_controller
|
A vulnerability in the build procedure for certain executable system files installed at boot time on Cisco Application Policy Infrastructure Controller (APIC) devices could allow an authenticated, lo…
|
CWE-426
Untrusted Search Path
|
CVE-2017-6768
|
2024-11-21 12:30 |
2017-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
