Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco ultra services framework vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-6708
A vulnerability in the symbolic link (symlink) creation functionality of the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to read sensitive files or execute malicious code on an affected system. The vulnerability is due...
Cisco Ultra Services Framework
9.1
CVSSv3
CVE-2017-6711
A vulnerability in the Ultra Automation Service (UAS) of the Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to gain unauthorized access to a targeted device. The vulnerability is due to an insecure default configuration of the Apache ZooKeepe...
Cisco Ultra Services Framework
9.8
CVSSv3
CVE-2017-6709
A vulnerability in the AutoVNF tool for the Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to access administrative credentials for Cisco Elastic Services Controller (ESC) and Cisco OpenStack deployments in an affected system. The vulnerabili...
Cisco Ultra Services Framework
9.8
CVSSv3
CVE-2017-6714
A vulnerability in the AutoIT service of Cisco Ultra Services Framework Staging Server could allow an unauthenticated, remote malicious user to execute arbitrary shell commands as the Linux root user. The vulnerability is due to improper shell invocations. An attacker could explo...
Cisco Ultra Services Framework Staging Server
7.5
CVSSv3
CVE-2017-6680
A vulnerability in the AutoVNF logging function of Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to create arbitrary directories on the affected system. More Information: CSCvc76652. Known Affected Releases: 21.0.0.
Cisco Ultra Services Framework 21.0.0
7.5
CVSSv3
CVE-2017-6681
A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to execute a relative path traversal attack, enabling an malicious user to read sensitive files on the system. More Information: CSCvc76662....
Cisco Ultra Services Framework 21.0.0
7.5
CVSSv3
CVE-2017-6771
A vulnerability in the AutoVNF automation tool of the Cisco Ultra Services Framework could allow an unauthenticated, remote malicious user to acquire sensitive information. The vulnerability is due to insufficient protection of sensitive data. An attacker could exploit this vulne...
Cisco Ultra Services Framework 21.0.v0.65839
8.8
CVSSv3
CVE-2017-6686
A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker with access to the management network to log in as an admin or oper user of the affected device, aka an Insecure Default Credentials Vulnerability. More Information: CS...
Cisco Ultra Services Framework Element Manager 21.0.0
8.8
CVSSv3
CVE-2017-6687
A vulnerability in Cisco Ultra Services Framework Element Manager could allow an authenticated, remote attacker with access to the management network to log in to the affected device using default credentials present on the system, aka an Insecure Default Password Vulnerability. ...
Cisco Ultra Services Framework Element Manager 21.0.0
8.8
CVSSv3
CVE-2017-6685
A vulnerability in Cisco Ultra Services Framework Staging Server could allow an authenticated, remote attacker with access to the management network to log in as an admin user of the affected device, aka an Insecure Default Credentials Vulnerability. More Information: CSCvc76681....
Cisco Ultra Services Framework Staging Server 21.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »