CyberSec.Space Logo
返回 CVE 浏览器

CVE-2016-6374

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1230%
EPSS Percentile0.12th
Published2016年9月22日
Last Modified2026年5月6日

Vulnerability Description

Cisco Cloud Services Platform (CSP) 2100 2.0 allows remote attackers to execute arbitrary code via a crafted dnslookup command in an HTTP request, aka Bug ID CSCuz89093.

Affected Platforms (CPE)

📦
Cisco

Cloud Services Platform 2100

= 2.0.0

References & Advisories

🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-csp2100-2
🔗 http://www.securityfocus.com/bid/93095
🔗 http://www.securitytracker.com/id/1036864
🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-csp2100-2
🔗 http://www.securityfocus.com/bid/93095
🔗 http://www.securitytracker.com/id/1036864

相关漏洞威胁

CVE-2017-122519.9

A vulnerability in the web console of the Cisco Cloud Services Platform (CSP) 2100 could allow an authenticated, remote attacker t...

CVE-2018-03948.8

A vulnerability in the web upload function of Cisco Cloud Services Platform 2100 could allow an authenticated, remote attacker to ...

CVE-2018-04548.8

A vulnerability in the web-based management interface of Cisco Cloud Services Platform 2100 could allow an authenticated, remote a...

CVE-2016-63737.2

The web-based GUI in Cisco Cloud Services Platform (CSP) 2100 2.0 allows remote authenticated administrators to execute arbitrary ...