Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco elastic services controller 2.3 vulnerabilities and exploits
(subscribe to this query)
4.9
CVSSv3
CVE-2017-6777
A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an authenticated, remote malicious user to acquire sensitive system information. The vulnerability is due to insufficient protection of sensitive files on the system. An attacker could ...
Cisco Elastic Services Controller 2.3\\(2\\)
Cisco Elastic Services Controller 2.3
6.1
CVSSv3
CVE-2017-6776
A vulnerability in the web framework of Cisco Elastic Services Controller (ESC) could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface. The vulnerability is due to insufficient validation of user-su...
Cisco Elastic Services Controller 2.3\\(1\\)
Cisco Elastic Services Controller 2.2\\(9.76\\)
5.5
CVSSv3
CVE-2017-6693
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local malicious user to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Aff...
Cisco Elastic Services Controller 2.2\\(9.76\\)
Cisco Elastic Services Controller 2.3\\(1\\)
4.3
CVSSv3
CVE-2017-6772
A vulnerability in Cisco Elastic Services Controller (ESC) could allow an authenticated, remote malicious user to view sensitive information. The vulnerability is due to insufficient protection of sensitive data. An attacker could exploit this vulnerability by authenticating to t...
Cisco Elastic Services Controller 2.3\\(2\\)
6.5
CVSSv3
CVE-2017-6691
A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote malicious user to access sensitive information on an affected system. More Information: CSCvd29403. Known Affected Releases: 2.3(2).
Cisco Elastic Services Controller 2.3\\(2\\)
5.5
CVSSv3
CVE-2017-6696
A vulnerability in the file system of Cisco Elastic Services Controllers could allow an authenticated, local malicious user to gain access to sensitive user credentials that are stored in an affected system. More Information: CSCvd73677. Known Affected Releases: 2.3(2).
Cisco Elastic Services Controller 2.3\\(2\\)
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started