VYPR
Get started
← All advisories
High severity7.5NVD Advisory· Published Jul 25, 2017· Updated May 13, 2026

CVE-2017-6750

CVE-2017-6750

Description

A vulnerability in AsyncOS for the Cisco Web Security Appliance (WSA) could allow an unauthenticated, local attacker to log in to the device with the privileges of a limited user or an unauthenticated, remote attacker to authenticate to certain areas of the web GUI, aka a Static Credentials Vulnerability. Affected Products: virtual and hardware versions of Cisco Web Security Appliance (WSA). More Information: CSCve06124. Known Affected Releases: 10.1.0-204. Known Fixed Releases: 10.5.1-270.

Affected products

17
  • Cisco Systems, Inc./Web Security Appliance10 versions
    cpe:2.3:a:cisco:web_security_appliance:10.0.0-232:*:*:*:*:*:*:*+ 9 more
    • cpe:2.3:a:cisco:web_security_appliance:10.0.0-232:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.0.0-233:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.0_base:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.1.0-204:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.1.1-230:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.1.1-234:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.1.1-235:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_appliance:10.5.0-358:*:*:*:*:*:*:*
  • Cisco Systems, Inc./Web Security Virtual Appliance7 versions
    cpe:2.3:a:cisco:web_security_virtual_appliance:10.0.0:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.0.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.0_base:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.1_base:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.5.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:web_security_virtual_appliance:10.5_base:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.