CVE-2017-6679

MEDIUM EPSS 27.9%
Published Dec 1, 20178y ago · Modified Jun 22, 20261w ago
6.4 CVSS 3.1
Medium
Find Similar
Published Dec 1, 2017 8y ago
Last Modified Jun 22, 2026 1w ago

Description

The Cisco Umbrella Virtual Appliance Version 2.0.3 and prior contained an undocumented encrypted remote support tunnel (SSH) which auto initiated from the customer's appliance to Cisco's SSH Hubs in the Umbrella datacenters. These tunnels were primarily leveraged for remote support and allowed for authorized/authenticated personnel from the Cisco Umbrella team to access the appliance remotely and obtain full control without explicit customer approval. To address this vulnerability, the Umbrella Virtual Appliance version 2.1.0 now requires explicit customer approval before an SSH tunnel from the VA to the Cisco terminating server can be established.

CVSS Details

Base Score
6.4
Exploitability
0.5
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity High
Privileges Required High
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
27.9% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Affected Products 1

VendorProductVersionRange
ciscoumbrella_virtual_appliance* <2.1.0

References 5

  • securityfocus.com http://www.securityfocus.com/bid/101567
    Third Party AdvisoryVDB Entry
  • sec.cloudapps.cisco.com https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-umbrella-tunnel-gJw5thgE
    Vendor Advisory
  • support.umbrella.com https://support.umbrella.com/hc/en-us/articles/115004154423
    Third Party Advisory
  • support.umbrella.com https://support.umbrella.com/hc/en-us/articles/115004752143-Virtual-Appliance-Vulnerability-due-to-always-on-SSH-Tunnel-RESOLVED-2017-09-15
    Third Party Advisory
  • info-sec.ca https://www.info-sec.ca/advisories/Cisco-Umbrella.html
    Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.