CVE-2017-6684

HIGH

Cisco Elastic Services Controllers - Privilege Escalation

Title source: llm
STIX 2.1

Description

A vulnerability in Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the Linux admin user, aka an Insecure Default Credentials Vulnerability. More Information: CSCvc76651. Known Affected Releases: 21.0.0.

References (2)

Scores

CVSS v3 8.8
EPSS 0.0099
EPSS Percentile 77.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-1188
Status published
Products (2)
cisco/elastic_services_controller 21.0.0
n/a/Cisco Elastic Services Controller Cisco Elastic Services Controller
Published Jun 13, 2017
Tracked Since Feb 18, 2026