CVE-2016-6413 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2016-6413

CWE

https://cwe.mitre.org/data/definitions/264.html

The installation procedure on Cisco Application Policy Infrastructure Controller (APIC) devices 1.3(2f) mishandles binary files, which allows local users to obtain root access via unspecified vectors, aka Bug ID CSCva50496.

Affected Software

Name	Vendor	Start Version	End Version
Application_policy_infrastructure_controller	Cisco	1.3(2f) (including)	1.3(2f) (including)

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160921-apic
http://www.securitytracker.com/id/1036872