CVE-2017-6704

A vulnerability in the web application in the Cisco Prime Collaboration Provisioning tool could allow an authenticated, remote attacker to perform arbitrary file downloads that could allow the attacker to read files from the underlying filesystem. More Information: CSCvc90335. Known Affected Releases: 12.1.

Data: Cisco advisories 1 day ago · Cisco CSAF 4 hours ago · NVD CVEs 7 hours ago · NVD CPEs 1 day ago · CISA KEV 1 day ago · EPSS 1 day ago

Severity	MEDIUM
CVSS	6.5
EPSS	0.97% EPSS medium
CWE	CWE-22
KEV
Published	8 years ago
Modified	1 week ago

Products with public affected evidence

Product	Advisory	Affected evidence
Cisco Prime Collaboration Provisioning	cisco-sa-20170621-pcp2	structured affected CSAF product_status