1. CVE-Search
  2. CVE-2017-6688
ID CVE-2017-6688
Summary A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux root user, aka an Insecure Default Password Vulnerability. More Information: CSCvc76631. Known Affected Releases: 2.2(9.76).
References
Vulnerable Configurations
  • cpe:2.3:a:cisco:elastic_services_controller:2.2\(9.76\):*:*:*:*:*:*:*
    cpe:2.3:a:cisco:elastic_services_controller:2.2\(9.76\):*:*:*:*:*:*:*
CVSS
Base: 9.0 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:
CWE CWE-1188
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:S/C:C/I:C/A:C
refmap via4
bid 98973
confirm https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-esc4
Last major update 03-10-2019 - 00:03
Published 13-06-2017 - 06:29
Last modified 03-10-2019 - 00:03
Back to Top