CVE-2017-6704
N/A
N/A
Summary
A vulnerability in the web application in the Cisco Prime Collaboration Provisioning tool could allow an authenticated, remote attacker to perform arbitrary file downloads that could allow the attacker to read files from the underlying filesystem. More Information: CSCvc90335. Known Affected Releases: 12.1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Cisco Prime Collaboration Provisioning Tool | Cisco Prime Collaboration Provisioning Tool | affected |
Weaknesses
- Arbitrary File Download Vulnerability
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id/1038744
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2
- http://www.securityfocus.com/bid/99223
References
- http://www.securitytracker.com/id/1038744
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp2
- http://www.securityfocus.com/bid/99223
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.