File Manipulation Vulnerability in Cisco ASR 5000 Series Routers
CVE-2017-6690

4.9MEDIUM

Key Information:

Vendor
Cisco
Status
Cisco Staros
Vendor
CVE Published:
13 June 2017

Summary

A vulnerability exists in the file check operation of Cisco ASR 5000 Series routers running the StarOS operating system, allowing an authenticated remote attacker to overwrite or modify arbitrary files. This could lead to unauthorized changes in system configuration, potentially compromising the security and integrity of affected devices.

Affected Version(s)

Cisco StarOS Cisco StarOS

References

https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/98998
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1038634
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
4.9
Severity:
MEDIUM
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.