High severity8.8NVD Advisory· Published Jun 13, 2017· Updated May 13, 2026

CVE-2017-6683

Description

A vulnerability in the esc_listener.py script of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to execute arbitrary commands as the tomcat user on an affected system, aka an Authentication Request Processing Arbitrary Command Execution Vulnerability. More Information: CSCvc76642. Known Affected Releases: 2.2(9.76).

Affected products

Cisco Systems, Inc./Elastic Services Controller
cpe:2.3:a:cisco:elastic_services_controller:2.2\(9.76\):*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/98982nvdThird Party AdvisoryVDB Entry
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-esc2nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000