发布日期：2017-04-05
更新日期：2017-04-06

受影响系统：

Cisco Unified Computing System
Cisco Firepower 4100 Series Next-Generation Firewall
Cisco Firepower 9300 Security Appliance

描述：

---

BUGTRAQ  ID: 97429
CVE(CAN) ID: CVE-2017-6598

Cisco是互联网解决方案提供商。

Cisco Unified Computing System Manager、Cisco Firepower 4100 Series Next-Generation Firewall、Cisco Firepower 9300 Security Appliance在debug plug-in功能中存在安全漏洞，可使本地攻击者执行任意命令。

<*来源：Cisco
  
  链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ucs
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（CVE-2017-6598）以及相应补丁:
CVE-2017-6598：Cisco UCS Manager, Cisco Firepower 4100 Series NGFW, and Cisco Firepower 9300 Security Appliance Debug Plug-in Privilege Escalation Vulnerability
链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ucs

浏览次数：1846
严重程度：0（网友投票）