Guest

Preview Tool

Cisco Bug: CSCvv33507 - CIAM: free-type 2.6.3 CVE-2017-8287 and others

Last Modified

Sep 11, 2020

Products (1)

  • Cisco Stealthwatch Enterprise

Known Affected Releases

None v1.0.3

Description (partial)

CISCO HIGHLY CONFIDENTIAL - CONTROLLED ACCESS

This issue is under review by the Cisco Product Security Incident Response
team (PSIRT).

The defect describes a product security vulnerability.  Its contents must
be protected from unauthorized disclosure, both internal and external to
Cisco.  Do not forward this information to mailing lists or newsgroups.

Documentation writers: it is prohibited to publish this Release-note 
Enclosure (RNE) until the content has been approved by PSIRT.  PSIRT may 
publish a Security Advisory regarding this defect, and the current text of 
this RNE will be replaced with appropriate information.  In the event that 
a Security Advisory is not published, PSIRT will replace this text with an 
appropriate explanation.

More information on PSIRT is available at <http//psirt.cisco.com/>.  
Cisco's public policy on security vulnerability handling can be reviewed at 
<http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html>.
For further information, send a message to psirt@cisco.com.

User: nicksmi-Date:09/09/2020

Symptom:
This product includes Third-party Software that is affected by the
vulnerabilities identified by the following Common Vulnerability and
Exposures (CVE) IDs:

CVE-2016-10244 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10244
CVE-2016-10328 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10328
CVE-2017-7857 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7857
CVE-2017-7858 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7858
CVE-2017-7864 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7864
CVE-2017-8105 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8105
CVE-2017-8287 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8287
CVE-2018-6942 - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6942

These bugs were opened proactively to investigate potential security impact(s) on the product. At this time, the product is not confirmed to be affected by any of the CVE(s).

Conditions:
Device with default configuration.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.