CVE-2017-6732

MEDIUM

Cisco Prime Network Software - Privilege Escalation

Title source: llm

Description

A vulnerability in the installation procedure for Cisco Prime Network Software could allow an authenticated, local attacker to elevate their privileges to root privileges. More Information: CSCvd47343. Known Affected Releases: 4.2(2.1)PP1 4.2(3.0)PP6 4.3(0.0)PP4 4.3(1.0)PP2. Known Fixed Releases: 4.3(2).

References (2)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99457

[Vendor Advisory] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-prime

Scores

CVSS v3 6.7

EPSS 0.0004

EPSS Percentile 11.3%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (5)

cisco/prime_network

n/a/Cisco Prime Network < Cisco Prime Network

Published Jul 10, 2017

Tracked Since Feb 18, 2026