CVE-2017-12317

Published Oct 22, 2017

Last updated 5 years ago

CVSS medium 6.7

Overview

Description: The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker could exploit this vulnerability by gaining local, administrative access to a Windows host and stopping the Cisco AMP for Endpoints service. Cisco Bug IDs: CSCvg42904.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 6.7
Impact score: 5.9
Exploitability score: 0.8
Vector string: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-798
ykramarz@cisco.com: CWE-798

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:3.1\\(10\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC552AE2-958F-4508-8A18-0F8374208531"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:3.1\\(15\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C534C2C-D0D1-4A86-A9E1-E8327B93DCFD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.0\\(0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F77CA23-9C21-4149-BF87-F719E3C2FCC2"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74B43163-EBC4-46DA-9537-2FEFCE8622EA"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.0\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FA265977-1948-4FDD-8431-9D2904D8D697"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.1\\(0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7448EF5-8CCE-41D6-B926-780396A30F64"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.1\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4918BE41-30C3-4BDD-BD26-4B1D199BD062"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.1\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7F651A64-B2D7-4536-9B8E-539724CA7E4D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.2\\(0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72C0356D-5A02-463F-906F-EE591B1B1EB0"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.2\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CF9771F-2EAB-479D-AA78-C8AFC3AB4DEF"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.3\\(0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9115445E-58A9-4F5D-B246-1E4138CDC0B7"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.3\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F195F11D-A44D-4FDD-BBC6-299DB63EE79F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.4\\(0\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "29AB9F91-075A-4541-8BC7-51F5E53FC091"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.4\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B513CB76-597A-432B-9B9D-6E869E772912"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.4\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BFF27510-6D6F-4D67-997E-0A4B75F29F85"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:4.4\\(4\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AE7785C-8820-4241-84E9-0BCC34AEB246"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92A023FE-824C-47E2-8523-FEFB07296B25"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.0\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09D54C61-6E1D-4EB1-B88A-E33FA97FCF31"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.0\\(5\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E428D60B-1F49-489C-AE56-9876A8027D77"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.0\\(7\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05EE257B-7207-4452-BD40-708FFEC72061"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.0\\(9\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D77ECEBF-DC16-4D6B-9AF3-469CEFD583D5"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09799FA5-06FA-41E2-BB55-79FF544BC11B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A83A07CD-D240-4D33-8D0D-1E58217A54AE"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(5\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADBCB13D-8EA3-46F9-A79F-54349331DC27"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(7\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57B610FB-D459-4D66-A730-749CE36CBF5A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(9\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B87B79C5-A079-4EAE-BD3E-EC4CE9E958FD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(11\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CDF0AA0-B261-4B76-B95E-FCE413B4CA3E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:5.1\\(13\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC6B2298-FF45-4AE1-AE50-3339739BDA34"
          },
          {
            "criteria": "cpe:2.3:a:cisco:advanced_malware_protection:6.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5AC52E2-473E-44BA-B050-A128125A20F4"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References