CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1390

HIGH
7.8
CVSS Severity Score
EPSS Score0.0510%
EPSS Percentile3.45th
PublishedJun 4, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

Cisco Prime Network Analysis Module (NAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) and Prime Virtual Network Analysis Module (vNAM) before 6.1(1) patch.6.1-2-final and 6.2.x before 6.2(1) allow local users to obtain root access via crafted CLI input, aka Bug ID CSCuy21892.

Affected Platforms (CPE)

πŸ“¦
Cisco

Prime Network Analysis Module Software

= 5.0.0
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 5.0.1
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 5.0.2
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 5.1.0
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 5.1.2
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 6.0.2
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 6.1.0
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 6.1.1
πŸ“¦
Cisco

Prime Network Analysis Module Software

= 6.2.0
πŸ“¦
Cisco

Prime Virtual Network Analysis Module Software

= 6.0.0
πŸ“¦
Cisco

Prime Virtual Network Analysis Module Software

= 6.1.0
πŸ“¦
Cisco

Prime Virtual Network Analysis Module Software

= 6.2.0

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime1
πŸ”— http://www.securitytracker.com/id/1036015
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160601-prime1
πŸ”— http://www.securitytracker.com/id/1036015

Related Vulnerabilities

CVE-2016-193110.0

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 44.0 allow remote attackers to cause a denial...

CVE-2016-134310.0

The XML parser in Cisco Information Server (CIS) 6.2 allows remote attackers to read arbitrary files or cause a denial of service ...

CVE-2016-198510.0

HPE Operations Manager 8.x and 9.0 on Windows allows remote attackers to execute arbitrary commands via a crafted serialized Java ...

CVE-2016-578810.0

General Electric (GE) Bently Nevada 3500/22M USB with firmware before 5.0 and Bently Nevada 3500/22M Serial have open ports, which...