7.8

CVE-2016-6367

Warning
Media report
Exploit

Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.

Data is provided by the National Vulnerability Database (NVD)
CiscoAdaptive Security Appliance Software Version >= 7.2.0 < 8.4\(3\)
   CiscoAsa 5500 Version-
   CiscoAsa 5500-x Version-
   CiscoAsa 5500 Csc-ssm Version-
   CiscoAsa 5505 Version-
   CiscoAsa 5506-x Version-
   CiscoAsa 5506h-x Version-
   CiscoAsa 5506w-x Version-
   CiscoAsa 5508-x Version-
   CiscoAsa 5510 Version-
   CiscoAsa 5512-x Version-
   CiscoAsa 5515-x Version-
   CiscoAsa 5516-x Version-
   CiscoAsa 5520 Version-
   CiscoAsa 5525-x Version-
   CiscoAsa 5540 Version-
   CiscoAsa 5545-x Version-
   CiscoAsa 5550 Version-
   CiscoAsa 5555-x Version-
   CiscoAsa 5580 Version-
   CiscoAsa 5585-x Version-
   CiscoFirewall Services Module Version-
   CiscoPix Firewall 501 Version-
   CiscoPix Firewall 506 Version-
   CiscoPix Firewall 506e Version-
   CiscoPix Firewall 515 Version-
   CiscoPix Firewall 515e Version-
   CiscoPix Firewall 520 Version-
   CiscoPix Firewall 525 Version-
   CiscoPix Firewall 535 Version-
CiscoAdaptive Security Appliance Software Version >= 8.5 < 9.0\(1\)
   CiscoAsa 5500 Version-
   CiscoAsa 5500-x Version-
   CiscoAsa 5500 Csc-ssm Version-
   CiscoAsa 5505 Version-
   CiscoAsa 5506-x Version-
   CiscoAsa 5506h-x Version-
   CiscoAsa 5506w-x Version-
   CiscoAsa 5508-x Version-
   CiscoAsa 5510 Version-
   CiscoAsa 5512-x Version-
   CiscoAsa 5515-x Version-
   CiscoAsa 5516-x Version-
   CiscoAsa 5520 Version-
   CiscoAsa 5525-x Version-
   CiscoAsa 5540 Version-
   CiscoAsa 5545-x Version-
   CiscoAsa 5550 Version-
   CiscoAsa 5555-x Version-
   CiscoAsa 5580 Version-
   CiscoAsa 5585-x Version-
   CiscoFirewall Services Module Version-
   CiscoPix Firewall 501 Version-
   CiscoPix Firewall 506 Version-
   CiscoPix Firewall 506e Version-
   CiscoPix Firewall 515 Version-
   CiscoPix Firewall 515e Version-
   CiscoPix Firewall 520 Version-
   CiscoPix Firewall 525 Version-
   CiscoPix Firewall 535 Version-

24.05.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Cisco Adaptive Security Appliance (ASA) CLI Remote Code Execution Vulnerability

Vulnerability

A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.

Description

Apply updates per vendor instructions.

Required actions
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 23.09% 0.957
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 3.1 10
AV:L/AC:L/Au:S/C:C/I:C/A:C
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

http://blogs.cisco.com/security/shadow-brokers
Vendor Advisory
Exploit
Press/Media Coverage
http://www.securityfocus.com/bid/92520
Third Party Advisory
Broken Link
VDB Entry
http://www.securitytracker.com/id/1036636
Third Party Advisory
Broken Link
VDB Entry
https://www.exploit-db.com/exploits/40271/
Third Party Advisory
VDB Entry