vulnerability

Cisco IOS-XR: CVE-2016-1456: Cisco IOS XR Software Command Injection Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Jul 14, 2016	May 19, 2021	Mar 3, 2023

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Jul 14, 2016

Added

May 19, 2021

Modified

Mar 3, 2023

Description

The CLI in Cisco IOS XR 6.x through 6.0.1 allows local users to execute arbitrary OS commands in a privileged context by leveraging unspecified container access, aka Bug ID CSCuz62721.

Solution

update-xros

References

BID-91785
CVE-2016-1456
https://attackerkb.com/topics/CVE-2016-1456
URL-https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160714-ios-xr

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today