CVE-2017-6706Sensitive Information Exposure in Cisco Prime Collaboration Provisioning

CWE-200Sensitive Information Exposure5 documents5 sources
Severity
5.1MEDIUMNVD
EPSS
0.1%
top 79.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Prime Collaboration Provisioning
Timeline
PublishedJul 4
Latest updateMay 17

Description

A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire sensitive information. More Information: CSCvd07260. Known Affected Releases: 12.1.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 2.5 | Impact: 2.5

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-53xh-354g-39v8: A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire2022-05-17
CVEList
CVE-2017-6706: A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire2017-07-04

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows Defender - 'mpengine.dll' Memory Corruption2018-04-05

📋Vendor Advisories

1
Cisco
Cisco Prime Collaboration Provisioning Tool Log File Information Disclosure Vulnerability2017-06-21
CVE-2017-6706 — Sensitive Information Exposure in Cisco | cvebase