Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability
|
System information
|
|
|
Affected software |
Cisco |
Description
|
A vulnerability in the remote support feature of Cisco Umbrella Virtual Appliance could allow an authenticated, remote attacker to obtain full control of an affected device. This vulnerability is due to an undocumented support mechanism that is present on the product. An attacker could exploit this vulnerability by obtaining privileges sufficient to access the remote support tunnel. A successful exploit could allow the attacker to access the appliance remotely and obtain full control without
More info:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20Umbrella%20Virtual%20Appliance%20Undocumented%20Support%20Tunnel%20Vulnerability&vs_k=1 |
Standar resources
|
Property |
Value |
CVE |
CVE-2017-6679. |