cisco-sa-20170727-ospf
Cisco PSIRTHIGH2017-07-27
Multiple Cisco Products OSPF LSA Manipulation Vulnerability
CVEs:CVE-2017-6770
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
Multiple Cisco Products OSPF LSA Manipulation Vulnerability
CVEs:CVE-2017-6770
Cisco Access Control System Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6769
Cisco IOS and IOS XE Software Autonomic Control Plane Channel Information Disclosure Vulnerability
CVEs:CVE-2017-6665
Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability
CVEs:CVE-2017-6664
Cisco IOS and IOS XE Software Autonomic Networking Infrastructure Denial of Service Vulnerability
CVEs:CVE-2017-6663
Cisco ASR 5000 Series Aggregation Services Routers GGSN Gateway Redirect Vulnerability
CVEs:CVE-2017-6612
Cisco ASR 5000 Series Aggregation Services Routers Access Control List Security Bypass Vulnerability
CVEs:CVE-2017-6672
Cisco Prime Collaboration Provisioning Tool Web Portal Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6755
Cisco Web Security Appliance Command Injection and Privilege Escalation Vulnerability
CVEs:CVE-2017-6746
Cisco Web Security Appliance Authenticated Command Injection and Privilege Escalation Vulnerability
CVEs:CVE-2017-6748
Cisco Web Security Appliance Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6749
Cisco Web Security Appliance Static Credentials Vulnerability
CVEs:CVE-2017-6750
Cisco Web Security Appliance Administrative Interface Access Control Bypass Vulnerability
CVEs:CVE-2017-6751
Cisco WebEx Browser Extension Remote Code Execution Vulnerability
CVEs:CVE-2017-6753
Cisco FireSIGHT System Software Arbitrary Code Execution Vulnerability
CVEs:CVE-2017-6735
Cisco StarOS CLI Command Injection Vulnerability
CVEs:CVE-2017-6707
Cisco Prime Network Information Disclosure Vulnerability
CVEs:CVE-2017-6726
Cisco Elastic Services Controller Arbitrary Command Execution Vulnerability
CVEs:CVE-2017-6712
Cisco Elastic Services Controller Unauthorized Access Vulnerability
CVEs:CVE-2017-6713
Cisco IOS XR Software Incorrect Permissions Privilege Escalation Vulnerability
CVEs:CVE-2017-6728
Cisco IOS XR Software Multicast Source Discovery Protocol Session Denial of Service Vulnerability
CVEs:CVE-2017-6731
Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6733
Cisco Identity Services Engine Guest Portal Cross-Site Scripting Vulnerability
CVEs:CVE-2017-6734
Cisco Prime Network Privilege Escalation Vulnerability
CVEs:CVE-2017-6732
Cisco StarOS Border Gateway Protocol Process Denial of Service Vulnerability
CVEs:CVE-2017-6729
Cisco Ultra Services Framework UAS Unauthenticated Access Vulnerability
CVEs:CVE-2017-6711
Cisco Ultra Services Framework AutoVNF Symbolic Link Handling Information Disclosure Vulnerability
CVEs:CVE-2017-6708
Cisco Ultra Services Framework AutoVNF Log File User Credential Information Disclosure Vulnerability
CVEs:CVE-2017-6709
Cisco Ultra Services Framework Staging Server Arbitrary Command Execution Vulnerability
CVEs:CVE-2017-6714
Cisco Wide Area Application Services Core Dump Denial of Service Vulnerability
CVEs:CVE-2017-6727
Cisco Wide Area Application Services Central Manager Information Disclosure Vulnerability
CVEs:CVE-2017-6730
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.