Lucene search
RgodZDI-17-445HistoryJun 26, 2017 - 12:00 a.m.
Cisco Prime Collaboration Provisioning ScriptMgr Servlet Authentication Bypass Remote Code Execution Vulnerability
2017-06-2600:00:00
rgod
www.zerodayinitiative.com
17
EPSS
0.806
Percentile
98.4%
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Prime Collaboration Provisioning. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ScriptMgr servlet, which listens on TCP port 443 by default. A crafted request can bypass authentication for this resource. An attacker can leverage this vulnerability to execute arbitrary code under the context of root.
Related
cvelist
cvelist
CVE-2017-6622
2017-05-18 19:00:00
exploitdb
exploitdb
cve
cve
CVE-2017-6622
2017-05-18 19:29:00
packetstorm
packetstorm
saint
saint
Cisco Prime Collaboration Provisioning ScriptMgr HEAD request vulnerability
2017-10-25 00:00:00
Cisco Prime Collaboration Provisioning ScriptMgr HEAD request vulnerability
2017-10-25 00:00:00
Cisco Prime Collaboration Provisioning ScriptMgr HEAD request vulnerability
2017-10-25 00:00:00
cisco
cisco
Cisco Prime Collaboration Provisioning Authentication Bypass Vulnerability
2017-05-17 16:00:00
checkpoint_advisories
checkpoint_advisories
zdt
zdt
nvd
nvd
CVE-2017-6622
2017-05-18 19:29:00
prion
prion
Command injection
2017-05-18 19:29:00
nessus
nessus
openvas
openvas
Cisco Prime Provisioning Multiple Vulnerabilities (May 2017)
2017-05-23 00:00:00