CVE-2017-6750 in Web Security Applianceinfo

Zusammenfassung

von MITRE

A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local attacker to log in to the device with the privileges of a limited user or an unauthenticated, remote attacker to authenticate to certain areas of the web GUI, aka a Static Credentials Vulnerability. Affected Products: virtual and hardware versions of Cisco Web Security Appliance (WSA). More Information: CSCve06124. Known Affected Releases: 10.1.0-204. Known Fixed Releases: 10.5.1-270.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

09.03.2017

Veröffentlichung

25.07.2017

Moderieren

akzeptiert

Eintrag

VDB-104329

CPE

bereit

CWE

CWE-255 (bestätigt)

CVSS

7.5 (NVD)

EPSS

0.00749

KEV

nein

Aktivitäten

very low

Sektor

Education, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-6750
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-6750
CVE Details	https://www.cvedetails.com/cve/CVE-2017-6750/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!