JSON View XML View

Key Value
MTID M114229
Title Cisco Adaptive Security Appliance CLI Security Bypass
Description A vulnerability in some versions of Cisco Adaptive Security Appliance Software could lead to a security bypass.
Observation A vulnerability in some versions of Cisco Adaptive Security Appliance Software could lead to a security bypass.

The flaw lies in the command-line interface parser. Successful exploitation could allow a local user to bypass intended access restrictions.
Recommendation The vendor has released an update to address the issue:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-cli
Vendor Cisco
Attack Vector Authenticated locally logged on user with limited privileges
Importance 9
Impact 10.00084536000
Threat Score 6.77
Labels
Security Update - Cisco
References
CVECVE-2016-6367
DISA IAVA2016-A-0218
MTIDM114229
CPEs
cpe:/a:cisco:adaptive_security_appliance_software:8.4%281%29
Created At 2016-08-17 00:00:00 UTC
Updated At 2016-11-19 10:31:03 UTC

Back