CVE-2017-6706

MEDIUM

Cisco Prime Collaboration Provisioning - Information Disclosure

Title source: rule

Description

A vulnerability in the logging subsystem of the Cisco Prime Collaboration Provisioning tool could allow an unauthenticated, local attacker to acquire sensitive information. More Information: CSCvd07260. Known Affected Releases: 12.1.

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99204

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038744

[Vendor Advisory] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170621-pcp4

Scores

CVSS v3 5.1

EPSS 0.0007

EPSS Percentile 20.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Details

CWE

CWE-200

Status published

Products (5)

cisco/prime_collaboration_provisioning

n/a/Cisco Prime Collaboration Provisioning Tool < Cisco Prime Collaboration Provisioning Tool

Published Jul 04, 2017

Tracked Since Feb 18, 2026