Main Vulnerability Database Vulnerabilities #VU7983

#VU7983 Information disclosure in Cisco Systems, Inc products - CVE-2017-6783

Published: August 16, 2017 / Updated: August 17, 2017

Vulnerability identifier: #VU7983

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-6783

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Cisco Content Security Management Appliance
Cisco Email Security Appliance
Cisco Web Security Appliance

Software vendor:
Cisco Systems, Inc

Description

The vulnerability allows a remote authenticated attacker to obtain potentially sensitive information.

The vulnerability exists in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) due to insufficient protection of protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. A remote attacker with knowledge of configured SNMP community string can make a crafted SNMP poll request to the targeted security appliance and discover confidential information.

Successful exploitation of the vulnerability may result in additional reconnaissance attacks.

Remediation

Update Web Security Appliance to version 11.0.edns-201.
Update Email Security Appliance to version 11.0.0-105.
Update Content Security Management Appliance to version 11.0.0-060.

External links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa