Описание
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.2(9.76) 2.3(1).
Ссылки
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:elastic_services_controller:2.2\(9.76\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:elastic_services_controller:2.3\(1\):*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00057
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-862
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local attacker to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Affected Releases: 2.2(9.76) 2.3(1).
EPSS
Процентиль: 18%
0.00057
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-862