vulnerability

Cisco UCS: CVE-2016-6402: Privilege Escalation vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Sep 18, 2016	Apr 25, 2018	May 2, 2018

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Sep 18, 2016

Added

Apr 25, 2018

Modified

May 2, 2018

Description

UCS Manager and UCS 6200 Fabric Interconnects in Cisco Unified Computing System (UCS) through 3.0(2d) allow local users to obtain OS root access via crafted CLI input, aka Bug ID CSCuz91263.

Solution

cisco-ucs-manager-upgrade-3_1_2b

References

BID-92956
CVE-2016-6402
https://attackerkb.com/topics/CVE-2016-6402
URL-http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160914-ucs
URL-http://www.securityfocus.com/bid/92956
URL-http://www.securitytracker.com/id/1036831

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today