CVE-2017-6692
Description
A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker to log in to the device with the privileges of the root user, aka an Insecure Default Account Information Vulnerability. More Information: CSCvd85710. Known Affected Releases: 21.0.v0.65839.
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.992
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Ultra Services Framework Element Manager Insecure Default Account Information Vulnerability For Cisco Ultra Services Framework | NCM |
| Initialization of a Resource with an Insecure Default Vulnerability (CVE-2017-6692) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1704627 | Security Update for Cisco Ultra Services Framework USP_6.2.A0.2906 |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234