What is the severity of CVE-2017-6784?

The severity of CVE-2017-6784 is classified as medium.

How do I fix CVE-2017-6784?

To fix CVE-2017-6784, upgrade the Cisco RV340, RV345, or RV345P firmware to a version that addresses the vulnerability.

Which devices are affected by CVE-2017-6784?

CVE-2017-6784 affects Cisco RV340, RV345, and RV345P Dual WAN Gigabit VPN Routers running specific firmware versions.

Is CVE-2017-6784 remote or local?

CVE-2017-6784 is a remote vulnerability, allowing attackers to exploit it without authentication.

Vulnerability/
CVE-2017-6784

medium

5.3

CWE

200

17/8/2017

16/9/2024

CVE-2017-6784: Infoleak

First published: Thu Aug 17 2017(Updated: )

A vulnerability in the web interface of the Cisco RV340, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The vulnerability is due to Cisco WebEx Meetings not sufficiently protecting sensitive data when responding to an HTTP request to the web interface. An attacker could exploit the vulnerability by attempting to use the HTTP protocol and looking at the data in the HTTP responses from the Cisco WebEx Meetings Server. An exploit could allow the attacker to find sensitive information about the application. Cisco Bug IDs: CSCve37988. Known Affected Releases: firmware 1.0.0.30, 1.0.0.33, 1.0.1.9, 1.0.1.16.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco RV340 Firmware	=1.0.0.30
Cisco RV340 Firmware	=1.0.0.33
Cisco RV340 Firmware	=1.0.1.9
Cisco RV340 Firmware	=1.0.1.16
Cisco Small Business RV340 Series Routers
Cisco RV345 Firmware	=1.0.0.30
Cisco RV345 Firmware	=1.0.0.33
Cisco RV345 Firmware	=1.0.1.9
Cisco RV345 Firmware	=1.0.1.16
Cisco Small Business RV345P
Cisco RV345P Firmware	=1.0.0.30
Cisco RV345P Firmware	=1.0.0.33
Cisco RV345P Firmware	=1.0.1.9
Cisco RV345P Firmware	=1.0.1.16
Cisco RV345P

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-6784?
The severity of CVE-2017-6784 is classified as medium.
How do I fix CVE-2017-6784?
To fix CVE-2017-6784, upgrade the Cisco RV340, RV345, or RV345P firmware to a version that addresses the vulnerability.
Which devices are affected by CVE-2017-6784?
CVE-2017-6784 affects Cisco RV340, RV345, and RV345P Dual WAN Gigabit VPN Routers running specific firmware versions.
What type of attack can be executed using CVE-2017-6784?
CVE-2017-6784 can allow an unauthenticated remote attacker to access sensitive data and perform reconnaissance attacks.
Is CVE-2017-6784 remote or local?
CVE-2017-6784 is a remote vulnerability, allowing attackers to exploit it without authentication.

agent/type
agent/references
agent/weakness
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco rv340 firmware
version/cisco rv340 firmware/1.0.0.30
version/cisco rv340 firmware/1.0.0.33
version/cisco rv340 firmware/1.0.1.9
version/cisco rv340 firmware/1.0.1.16
canonical/cisco small business rv340 series routers
canonical/cisco rv345 firmware
version/cisco rv345 firmware/1.0.0.30
version/cisco rv345 firmware/1.0.0.33
version/cisco rv345 firmware/1.0.1.9
version/cisco rv345 firmware/1.0.1.16
canonical/cisco small business rv345p
canonical/cisco rv345p firmware
version/cisco rv345p firmware/1.0.0.30
version/cisco rv345p firmware/1.0.0.33
version/cisco rv345p firmware/1.0.1.9
version/cisco rv345p firmware/1.0.1.16
canonical/cisco rv345p

Frequently Asked Questions

What is the severity of CVE-2017-6784?
The severity of CVE-2017-6784 is classified as medium.
How do I fix CVE-2017-6784?
To fix CVE-2017-6784, upgrade the Cisco RV340, RV345, or RV345P firmware to a version that addresses the vulnerability.
Which devices are affected by CVE-2017-6784?
CVE-2017-6784 affects Cisco RV340, RV345, and RV345P Dual WAN Gigabit VPN Routers running specific firmware versions.
What type of attack can be executed using CVE-2017-6784?
CVE-2017-6784 can allow an unauthenticated remote attacker to access sensitive data and perform reconnaissance attacks.
Is CVE-2017-6784 remote or local?
CVE-2017-6784 is a remote vulnerability, allowing attackers to exploit it without authentication.

CVE-2017-6784: Infoleak

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-6784?

How do I fix CVE-2017-6784?

Which devices are affected by CVE-2017-6784?

What type of attack can be executed using CVE-2017-6784?

Is CVE-2017-6784 remote or local?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2017-6784?

How do I fix CVE-2017-6784?

Which devices are affected by CVE-2017-6784?

What type of attack can be executed using CVE-2017-6784?

Is CVE-2017-6784 remote or local?