CVE-2016-1386 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-1386

CWE

https://cwe.mitre.org/data/definitions/264.html

The API in Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) 1.0(1) allows remote attackers to spoof administrative notifications via crafted attribute-value pairs, aka Bug ID CSCux15521.

Affected Software

Name	Vendor	Start Version	End Version
Application_policy_infrastructure_controller_enterprise_module	Cisco	1.0.(1) (including)	1.0.(1) (including)

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160428-apic
http://www.securitytracker.com/id/1035702