VDB

CVE-2018-0106

CVE-2018-0106 PUBLISHED CVSS 2.0999999046325684 LOW

A vulnerability in the ConfD server of the Cisco Elastic Services Controller (ESC) could allow an unauthenticated, local attacker to access sensitive information on a targeted system. The vulnerability is due to insufficient security restrictions. An attacker could exploit this vulnerability by accessing unauthorized information within the ConfD directory and file structure. Successful exploitation could allow the attacker to view sensitive information. Cisco Bug IDs: CSCvg00221.

EPSS 0.07% · 21.2th percentile

Risk Scores

CVSS 2.0
2.0999999046325684
EPSS Score
0.07%
21.2th percentile

Affected Products

VendorProductVersions
n/aCisco Elastic Services Controller*
ciscoelastic_services_controller

Exploit Intelligence

Timeline

  • Jan 17, 2018 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • May 2, 2022 EPSS Score
  • Sep 5, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
  • Jan 8, 2023 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›