CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2017-6714

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0060%
EPSS Percentile33.65th
Published2017年7月6日
Last Modified2026年5月13日

Vulnerability Description

A vulnerability in the AutoIT service of Cisco Ultra Services Framework Staging Server could allow an unauthenticated, remote attacker to execute arbitrary shell commands as the Linux root user. The vulnerability is due to improper shell invocations. An attacker could exploit this vulnerability by crafting CLI command inputs to execute Linux shell commands as the root user. This vulnerability affects all releases of Cisco Ultra Services Framework Staging Server prior to Releases 5.0.3 and 5.1. Cisco Bug IDs: CSCvc76673.

Affected Platforms (CPE)

📦
Cisco

Ultra Services Framework Staging Server

<= 5.0.2

References & Advisories

🔗 http://www.securityfocus.com/bid/99436
🔗 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-usf3
🔗 http://www.securityfocus.com/bid/99436
🔗 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-usf3

相關漏洞威脅

CVE-2017-66858.8

A vulnerability in Cisco Ultra Services Framework Staging Server could allow an authenticated, remote attacker with access to the ...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...