Vulnerability Details CVE-2017-3817
A vulnerability in the role-based resource checking functionality of Cisco Unified Computing System (UCS) Director could allow an authenticated, remote attacker to view unauthorized information for any virtual machine in a UCS domain. More Information: CSCvc32434. Known Affected Releases: 5.5(0.1) 6.0(0.0).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 35.3%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
- http://www.securityfocus.com/bid/97430
- http://www.securitytracker.com/id/1038194
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ucs-director
- http://www.securityfocus.com/bid/97430
- http://www.securitytracker.com/id/1038194
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ucs-director
Products affected by CVE-2017-3817
-
cpe:2.3:a:cisco:unified_computing_system_director:5.5.0.1
-
cpe:2.3:a:cisco:unified_computing_system_director:6.0.0.0