CVE-2017-6693
Description
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.2(9.76) 2.3(1).
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.057
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Elastic Services Controller Unauthorized Directory Access Vulnerability For Cisco Elastic Services Controller | NCM |
| Missing Authorization Vulnerability (CVE-2017-6693) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1700559 | Security Update for Cisco Elastic Services Controller 5.3(0.102) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234