CVE-2017-6683

State: PUBLISHED · Published: 2017-06-13 · Updated: 2024-08-05 · Assigner: cisco

Description

A vulnerability in the esc_listener.py script of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to execute arbitrary commands as the tomcat user on an affected system, aka an Authentication Request Processing Arbitrary Command Execution Vulnerability. More Information: CSCvc76642. Known Affected Releases: 2.2(9.76).

CWE

(none)

Affected

n/a / Cisco Elastic Services Controller — v=Cisco Elastic Services Controller [affected]

CVSS

(none)

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-esc2 x_refsource_CONFIRM
http://www.securityfocus.com/bid/98982 vdb-entry, x_refsource_BID

Source

cvelistV5-main/cves/2017/6xxx/CVE-2017-6683.json