Sign-up

ID

VAR-201607-0434


CVE

CVE-2016-1456


TITLE

Cisco IOS XR of CLI In a privileged context at OS Command execution vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2016-003785

DESCRIPTION

The CLI in Cisco IOS XR 6.x through 6.0.1 allows local users to execute arbitrary OS commands in a privileged context by leveraging unspecified container access, aka Bug ID CSCuz62721. Cisco IOSXR is a fully modular, distributed networked operating system in the Cisco IOS software family. There is a security vulnerability in the CLI in Cisco IOSXR 6.x to 6.0.1. A local attacker could exploit this vulnerability to execute arbitrary operating system commands with elevated privileges. This issue is being tracked by Cisco bug ID CSCuz62721

Trust: 2.61

sources: NVD: CVE-2016-1456 // JVNDB: JVNDB-2016-003785 // CNVD: CNVD-2016-04938 // BID: 91785 // VULHUB: VHN-90275 // VULMON: CVE-2016-1456

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2016-04938

AFFECTED PRODUCTS

vendor:ciscomodel:ios xrscope:eqversion:6.0.1

Trust: 1.6

vendor:ciscomodel:ios xrscope:eqversion:6.0_base

Trust: 1.6

vendor:ciscomodel:ios xrscope:eqversion:6.0.0

Trust: 1.6

vendor:ciscomodel:ios xrscope:eqversion:6.0.1 for up to 6.x

Trust: 0.8

vendor:ciscomodel:ios xrscope:lteversion:<=6.0.1

Trust: 0.6

vendor:ciscomodel:ios xr softwarescope:eqversion:6.0.1

Trust: 0.3

sources: CNVD: CNVD-2016-04938 // BID: 91785 // JVNDB: JVNDB-2016-003785 // NVD: CVE-2016-1456 // CNNVD: CNNVD-201607-433

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD: CVE-2016-1456
value: HIGH

Trust: 1.8

CNVD: CNVD-2016-04938
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201607-433
value: HIGH

Trust: 0.6

VULHUB: VHN-90275
value: HIGH

Trust: 0.1

VULMON: CVE-2016-1456
value: HIGH

Trust: 0.1

NVD:
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: FALSE
obtainAllPrivilege: FALSE
obtainUserPrivilege: FALSE
obtainOtherPrivilege: FALSE
userInteractionRequired: FALSE
version: 2.0

Trust: 1.0

NVD: CVE-2016-1456
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.9

CNVD: CNVD-2016-04938
severity: MEDIUM
baseScore: 6.8
vectorString: AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.1
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-90275
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

NVD:
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.8
impactScore: 5.9
version: 3.0

Trust: 1.0

NVD: CVE-2016-1456
baseSeverity: HIGH
baseScore: 7.8
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2016-04938 // VULHUB: VHN-90275 // VULMON: CVE-2016-1456 // JVNDB: JVNDB-2016-003785 // NVD: CVE-2016-1456 // CNNVD: CNNVD-201607-433

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.9

sources: VULHUB: VHN-90275 // JVNDB: JVNDB-2016-003785 // NVD: CVE-2016-1456

THREAT TYPE

local

Trust: 0.9

sources: BID: 91785 // CNNVD: CNNVD-201607-433

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-201607-433

CONFIGURATIONS

sources:
            
            
            NVD: CVE-2016-1456

PATCH
title:cisco-sa-20160714-ios-xrurl:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160714-ios-xr
Trust: 0.8
title:Patch for Cisco IOSXR Native Operating System Command Injection Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/79224
Trust: 0.6
title:Cisco IOS XR Fixes for local operating system command injection vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=62975
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2016-04938 // 
            
            
            
            JVNDB: JVNDB-2016-003785 // 
            
            
            
            CNNVD: CNNVD-201607-433

EXTERNAL IDS
db:NVDid:CVE-2016-1456
Trust: 3.5
db:BIDid:91785
Trust: 2.1
db:SECTRACKid:1036311
Trust: 1.2
db:JVNDBid:JVNDB-2016-003785
Trust: 0.8
db:CNNVDid:CNNVD-201607-433
Trust: 0.7
db:CNVDid:CNVD-2016-04938
Trust: 0.6
db:VULHUBid:VHN-90275
Trust: 0.1
db:VULMONid:CVE-2016-1456
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2016-04938 // 
            
            
            
            VULHUB: VHN-90275 // 
            
            
            
            VULMON: CVE-2016-1456 // 
            
            
            
            BID: 91785 // 
            
            
            
            JVNDB: JVNDB-2016-003785 // 
            
            
            
            NVD: CVE-2016-1456 // 
            
            
            
            CNNVD: CNNVD-201607-433

REFERENCES
url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160714-ios-xr
Trust: 2.1
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1456
Trust: 1.4
url:http://www.securityfocus.com/bid/91785
Trust: 1.2
url:http://www.securitytracker.com/id/1036311
Trust: 1.2
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1456
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
url:https://cwe.mitre.org/data/definitions/264.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2016-04938 // 
            
            
            
            VULHUB: VHN-90275 // 
            
            
            
            VULMON: CVE-2016-1456 // 
            
            
            
            BID: 91785 // 
            
            
            
            JVNDB: JVNDB-2016-003785 // 
            
            
            
            NVD: CVE-2016-1456 // 
            
            
            
            CNNVD: CNNVD-201607-433

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 91785

SOURCES
db:CNVDid:CNVD-2016-04938
db:VULHUBid:VHN-90275
db:VULMONid:CVE-2016-1456
db:BIDid:91785
db:JVNDBid:JVNDB-2016-003785
db:NVDid:CVE-2016-1456
db:CNNVDid:CNNVD-201607-433

LAST UPDATE DATE
2023-12-18T12:20:28.798000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2016-04938date:2016-07-19T00:00:00
db:VULHUBid:VHN-90275date:2017-09-01T00:00:00
db:VULMONid:CVE-2016-1456date:2017-09-01T00:00:00
db:BIDid:91785date:2016-07-14T00:00:00
db:JVNDBid:JVNDB-2016-003785date:2016-07-21T00:00:00
db:NVDid:CVE-2016-1456date:2017-09-01T01:29:04.130
db:CNNVDid:CNNVD-201607-433date:2016-07-18T00:00:00

SOURCES RELEASE DATE
db:CNVDid:CNVD-2016-04938date:2016-07-19T00:00:00
db:VULHUBid:VHN-90275date:2016-07-15T00:00:00
db:VULMONid:CVE-2016-1456date:2016-07-15T00:00:00
db:BIDid:91785date:2016-07-14T00:00:00
db:JVNDBid:JVNDB-2016-003785date:2016-07-21T00:00:00
db:NVDid:CVE-2016-1456date:2016-07-15T16:59:07.190
db:CNNVDid:CNNVD-201607-433date:2016-07-18T00:00:00