CVE-2016-9199

Sažetak

A vulnerability in the Cisco application-hosting framework (CAF) of Cisco IOx could allow an authenticated, remote attacker to read arbitrary files on a targeted system. Affected Products: This vulnerability affects specific releases of the Cisco IOx subsystem of Cisco IOS and IOS XE Software. More Information: CSCvb23331. Known Affected Releases: 15.2(6.0.57i)E CAF-1.1.0.0.

Reference

http://www.securityfocus.com/bid/94788
http://www.securitytracker.com/id/1037427
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-caf

CVSS

Base:	6.8
Impact:	6.9
Exploitability:	8.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:S/C:C/I:N/A:N

Zadnje važnije ažuriranje

22-12-2016 - 18:22

Objavljeno

14-12-2016 - 00:59