Vulnerability Details CVE-2016-6374
Cisco Cloud Services Platform (CSP) 2100 2.0 allows remote attackers to execute arbitrary code via a crafted dnslookup command in an HTTP request, aka Bug ID CSCuz89093.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.056
EPSS Ranking 89.9%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-csp2100-2
- http://www.securityfocus.com/bid/93095
- http://www.securitytracker.com/id/1036864
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-csp2100-2
- http://www.securityfocus.com/bid/93095
- http://www.securitytracker.com/id/1036864
Products affected by CVE-2016-6374
-
cpe:2.3:a:cisco:cloud_services_platform_2100:2.0.0