Main Vulnerability Database Vulnerabilities #VU7983

Information disclosure in Cisco Systems, Inc products - CVE-2017-6783

Published: August 16, 2017 / Updated: August 17, 2017

Vulnerability identifier: #VU7983

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2017-6783

CWE-ID: CWE-200

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Cisco Systems, Inc

Affected software:
Cisco Content Security Management Appliance
Cisco Email Security Appliance
Cisco Web Security Appliance

Detailed vulnerability description

The vulnerability allows a remote authenticated attacker to obtain potentially sensitive information.

The vulnerability exists in SNMP polling for the Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) due to insufficient protection of protect confidential information at rest in response to Simple Network Management Protocol (SNMP) poll requests. A remote attacker with knowledge of configured SNMP community string can make a crafted SNMP poll request to the targeted security appliance and discover confidential information.

Successful exploitation of the vulnerability may result in additional reconnaissance attacks.

How to mitigate CVE-2017-6783

Update Web Security Appliance to version 11.0.edns-201.
Update Email Security Appliance to version 11.0.0-105.
Update Content Security Management Appliance to version 11.0.0-060.

Sources

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170816-csa

Information disclosure in Cisco Systems, Inc products - CVE-2017-6783

Detailed vulnerability description

How to mitigate CVE-2017-6783

Sources

Please verify you're human