Code injection

2016-09-2401:59:00

PRIOn knowledge base

www.prio-n.com

6.8 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The installation procedure on Cisco Application Policy Infrastructure Controller (APIC) devices 1.3(2f) mishandles binary files, which allows local users to obtain root access via unspecified vectors, aka Bug ID CSCva50496.

CPENameOperatorVersion
application_policy_infrastructure_controllereq1.32.102

CPE	Name	Operator	Version
	application_policy_infrastructure_controller	eq	1.32.102

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-apic

www.securitytracker.com/id/1036872