Cisco: >> Ultra Services Framework >> 21.0.0 Security Vulnerabilities
A vulnerability in the AutoVNF logging function of Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to create arbitrary directories on the affected system. More Information: CSCvc76652. Known Affected Releases: 21.0.0.
CVSS Score
7.5
EPSS Score
0.003
Published
2017-06-13
A vulnerability in the AutoVNF VNFStagingView class of Cisco Ultra Services Framework could allow an unauthenticated, remote attacker to execute a relative path traversal attack, enabling an attacker to read sensitive files on the system. More Information: CSCvc76662. Known Affected Releases: 21.0.0.
CVSS Score
7.5
EPSS Score
0.031
Published
2017-06-13