CVE-2016-6406
CRITICAL
9.8
CVSS Severity Score
Vulnerability Description
Cisco IronPort AsyncOS 9.1.2-023, 9.1.2-028, 9.1.2-036, 9.7.2-046, 9.7.2-047, 9.7.2-054, 10.0.0-124, and 10.0.0-125 on Email Security Appliance (ESA) devices, when Enrollment Client before 1.0.2-065 is installed, allows remote attackers to obtain root access via a connection to the testing/debugging interface, aka Bug ID CSCvb26017.
Affected Platforms (CPE)
💻
Cisco
Email Security Appliance Firmware
= 9.1.2-023💻
Cisco
Email Security Appliance Firmware
= 9.1.2-028💻
Cisco
Email Security Appliance Firmware
= 9.1.2-036💻
Cisco
Email Security Appliance Firmware
= 9.7.2-046💻
Cisco
Email Security Appliance Firmware
= 9.7.2-047💻
Cisco
Email Security Appliance Firmware
= 9.7.2-054💻
Cisco
Email Security Appliance Firmware
= 10.0.0-124💻
Cisco