Vulnerability Details CVE-2016-9012
CloudVision Portal (CVP) before 2016.1.2.1 allows remote authenticated users to gain access to the internal configuration mechanisms via the management plane, related to a request to /web/system/console/bundle.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.6%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
Products affected by CVE-2016-9012
-
cpe:2.3:a:arista:cloudvision_portal:2015.1.1
-
cpe:2.3:a:arista:cloudvision_portal:2015.1.2
-
cpe:2.3:a:arista:cloudvision_portal:2016.1.0
-
cpe:2.3:a:arista:cloudvision_portal:2016.1.1
-
cpe:2.3:a:arista:cloudvision_portal:2016.1.2
-
cpe:2.3:a:arista:cloudvision_portal:2016.1.2.0