Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-6367

Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.

Published

2016-08-18T18:59:01.463

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:S/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.1

Impact Score

10.0

Weaknesses

Type: Primary
CWE-77

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	adaptive_security_appliance_software	< 8.4\(3\)	Yes
Operating System	cisco	adaptive_security_appliance_software	< 9.0\(1\)	Yes
Hardware	cisco	asa_5500	-	No
Hardware	cisco	asa_5500-x	-	No
Hardware	cisco	asa_5500_csc-ssm	-	No
Hardware	cisco	asa_5505	-	No
Hardware	cisco	asa_5506-x	-	No
Hardware	cisco	asa_5506h-x	-	No
Hardware	cisco	asa_5506w-x	-	No
Hardware	cisco	asa_5508-x	-	No
Hardware	cisco	asa_5510	-	No
Hardware	cisco	asa_5512-x	-	No
Hardware	cisco	asa_5515-x	-	No
Hardware	cisco	asa_5516-x	-	No
Hardware	cisco	asa_5520	-	No
Hardware	cisco	asa_5525-x	-	No
Hardware	cisco	asa_5540	-	No
Hardware	cisco	asa_5545-x	-	No
Hardware	cisco	asa_5550	-	No
Hardware	cisco	asa_5555-x	-	No
Hardware	cisco	asa_5580	-	No
Hardware	cisco	asa_5585-x	-	No
Hardware	cisco	firewall_services_module	-	No
Hardware	cisco	pix_firewall_501	-	No
Hardware	cisco	pix_firewall_506	-	No
Hardware	cisco	pix_firewall_506e	-	No
Hardware	cisco	pix_firewall_515	-	No
Hardware	cisco	pix_firewall_515e	-	No
Hardware	cisco	pix_firewall_520	-	No
Hardware	cisco	pix_firewall_525	-	No
Hardware	cisco	pix_firewall_535	-	No

References

http://blogs.cisco.com/security/shadow-brokers Exploit, Press/Media Coverage, Vendor Advisory ([email protected])
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-cli Vendor Advisory ([email protected])
http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/92520 Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1036636 Broken Link, Third Party Advisory, VDB Entry ([email protected])
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40271.zip Broken Link, Exploit ([email protected])
https://www.exploit-db.com/exploits/40271/ Third Party Advisory, VDB Entry ([email protected])
http://blogs.cisco.com/security/shadow-brokers Exploit, Press/Media Coverage, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-cli Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/92520 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1036636 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40271.zip Broken Link, Exploit (af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/40271/ Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)