CVE-2016-1320

CWE-78OS Command InjectionCWE-2644 documents4 sources
Severity
6.7MEDIUM
EPSS
0.2%
top 59.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Prime Collaboration
Timeline
PublishedFeb 12
Latest updateMay 17

Description

The CLI in Cisco Prime Collaboration 9.0 and 11.0 allows local users to execute arbitrary OS commands as root by leveraging administrator privileges, aka Bug ID CSCux69286.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages1 packages

NVDcisco/prime_collaboration11.0.0, 9.0.0, 9.0.5+2

🔴Vulnerability Details

2
GHSA
GHSA-9r6c-6xf4-89m9: The CLI in Cisco Prime Collaboration 92022-05-17
CVEList
CVE-2016-1320: The CLI in Cisco Prime Collaboration 92016-02-12

📋Vendor Advisories

1
Cisco
Cisco Prime Collaboration Provisioning Local Privilege Escalation Vulnerability2016-02-09
CVE-2016-1320 (MEDIUM CVSS 6.7) | The CLI in Cisco Prime Collaboratio | cvebase.io