PT-2017-17245 · Cisco · Cisco Asr 5000 Series Aggregated Services Routers

Publicado

2017-06-13

Atualizado

2019-10-03

CVE-2017-6690

CVSS v3.1

4.9

Média

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Cisco ASR 5000 Series Aggregated Services Routers versions 21.0.v0.65839 through 21.3.M0.67005

Description A vulnerability in the file check operation could allow an authenticated, remote attacker to overwrite or modify arbitrary files on an affected system.

Recommendations For versions 21.0.v0.65839 through 21.3.M0.67005, update to version 21.4.A0.67087 or later to resolve the issue. For versions 21.0.v0.65839 through 21.3.M0.67005, update to version 21.3.M0.67084 or later as an alternative fix.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2017-6690

Produtos afetados

Cisco Asr 5000 Series Aggregated Services Routers

PT-2017-17245 · Cisco · Cisco Asr 5000 Series Aggregated Services Routers

CVE-2017-6690

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5