CVE-2017-6685

HIGH Year: 2017
CVSS v3 Score
8.8
High
CVSS v2 Score
6.5
Medium
Weakness Type
CWE-1188
View all →

Vulnerability Description

A vulnerability in Cisco Ultra Services Framework Staging Server could allow an authenticated, remote attacker with access to the management network to log in as an admin user of the affected device, aka an Insecure Default Credentials Vulnerability. More Information: CSCvc76681. Known Affected Releases: 21.0.0.

Related Vulnerabilities

CVE-2017-6684

HIGH
CVSS:8.8(High)

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux admin user, aka an Insecure Default Credentials Vulnera...

CWE-11882017

CVE-2017-6686

HIGH
CVSS:8.8(High)

A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker with access to the management network to log in as an admin or oper user of the affected...

CWE-11882017

CVE-2017-6687

HIGH
CVSS:8.8(High)

A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker with access to the management network to log in to the affected device using default cre...

CWE-11882017

CVE-2017-6688

HIGH
CVSS:8.8(High)

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux root user, aka an Insecure Default Password Vulnerabili...

CWE-11882017

CVE-2017-6689

HIGH
CVSS:8.8(High)

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administ...

CWE-11882017

CVE-2017-6692

HIGH
CVSS:8.8(High)

A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker to log in to the device with the privileges of the root user, aka an Insecure Default Ac...

CWE-11882017