CVE-2017-12315

Name of the Vulnerable Software and Affected Versions Cisco HyperFlex System (affected versions not specified)

Description A vulnerability in system logging when replication is being configured could allow an authenticated, local attacker to view sensitive information that should be restricted in the system log files. The attacker must be authenticated as an administrative user. The issue is due to the lack of proper masking of sensitive information in system log files. An attacker could exploit this by authenticating to the targeted device and viewing the system log file, potentially allowing them to view sensitive system information and conduct additional reconnaissance attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.