What is the severity of CVE-2017-6623?

CVE-2017-6623 has been rated as high severity due to its potential for privilege escalation.

How do I fix CVE-2017-6623?

To mitigate CVE-2017-6623, ensure that the sudoers permissions on the affected script file are properly configured to restrict unauthorized access.

Who is affected by CVE-2017-6623?

CVE-2017-6623 affects users of Cisco Policy Suite versions 10.0.0, 10.1.0, and 11.0.0.

What type of vulnerability is CVE-2017-6623?

CVE-2017-6623 is a local privilege escalation vulnerability originated from incorrect sudoers permissions.

What are the risks of CVE-2017-6623 if exploited?

If exploited, CVE-2017-6623 could allow an authenticated local attacker to gain root privileges on the system.

Vulnerability/
CVE-2017-6623

high

7.8

CWE

269 264

18/5/2017

9/10/2019

CVE-2017-6623

First published: Thu May 18 2017(Updated: )

A vulnerability in a script file that is installed as part of the Cisco Policy Suite (CPS) Software distribution for the CPS appliance could allow an authenticated, local attacker to escalate their privilege level to root. The vulnerability is due to incorrect sudoers permissions on the script file. An attacker could exploit this vulnerability by authenticating to the device and providing crafted user input at the CLI, using this script file to escalate their privilege level and execute commands as root. A successful exploit could allow the attacker to acquire root-level privileges and take full control of the appliance. The user has to be logged-in to the device with valid credentials for a specific set of users. The Cisco Policy Suite application is vulnerable when running software versions 10.0.0, 10.1.0, or 11.0.0. Cisco Bug IDs: CSCvc07366.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Policy Suite Software	=10.0.0
Cisco Policy Suite Software	=10.1.0
Cisco Policy Suite Software	=11.0.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-6623?
CVE-2017-6623 has been rated as high severity due to its potential for privilege escalation.
How do I fix CVE-2017-6623?
To mitigate CVE-2017-6623, ensure that the sudoers permissions on the affected script file are properly configured to restrict unauthorized access.
Who is affected by CVE-2017-6623?
CVE-2017-6623 affects users of Cisco Policy Suite versions 10.0.0, 10.1.0, and 11.0.0.
What type of vulnerability is CVE-2017-6623?
CVE-2017-6623 is a local privilege escalation vulnerability originated from incorrect sudoers permissions.
What are the risks of CVE-2017-6623 if exploited?
If exploited, CVE-2017-6623 could allow an authenticated local attacker to gain root privileges on the system.

agent/weakness
agent/type
agent/tags
agent/event
agent/references
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/severity
agent/author
vendor/cisco
canonical/cisco policy suite software
version/cisco policy suite software/10.0.0
version/cisco policy suite software/10.1.0
version/cisco policy suite software/11.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.