Vulnerability Bulletins

Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability

System information

Affected software Cisco


A vulnerability in the remote support feature of Cisco Umbrella Virtual Appliance could allow an authenticated, remote attacker to obtain full control of an affected device. This vulnerability is due to an undocumented support mechanism that is present on the product. An attacker could exploit this vulnerability by obtaining privileges sufficient to access the remote support tunnel. A successful exploit could allow the attacker to access the appliance remotely and obtain full control without

More info:

Standar resources

Property Value
CVE CVE-2017-6679.

Version history

Version Comments Date
1.0 Advisory issued 2023-08-17
Ministerio de Defensa