cbcvebase.
CVE-2016-6430
published 2016-11-03

CVE-2016-6430: A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System (IPICS) could allow an authenticated, local attacker to…

PriorityP434high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.29%
21.0th percentile
A vulnerability in the command-line interface of the Cisco IP Interoperability and Collaboration System (IPICS) could allow an authenticated, local attacker to elevate the privilege level associated with their session. More Information: CSCva38636. Known Affected Releases: 4.10(1). Known Fixed Releases: 5.0(1).

Affected

10 ranges
VendorProductVersion rangeFixed in
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system
ciscoip_interoperability_and_collaboration_system

CVSS provenance

nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.6MEDIUMAV:L/AC:M/Au:S/C:C/I:C/A:C
vendor_cisco6.6MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.