Описание
A vulnerability in the software upgrade component of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an authenticated, remote attacker with Administrator-level privileges to install a modified software image, leading to arbitrary code injection on an affected system.
This vulnerability is due to insufficient signature validation of software images. An attacker could exploit this vulnerability by installing a modified software image. A successful exploit could allow the attacker to execute arbitrary code on the affected system and elevate their privileges to root. Note: Administrators should always validate the hash of any upgrade image before uploading it to Cisco APIC and Cisco Cloud Network Controller.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(1s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(2i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(3f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.1\(4m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(1h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(1m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(2i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(2j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(3c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(3e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(3h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\(3m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(1g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(1h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(1j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(2i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(2j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\(2k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(1r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\(2o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(1h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(2k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(3g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(3h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(3j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.1\(4a\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(1n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(1o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(2q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(3j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(3p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(3r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(3s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(3t\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(4f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(4p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(4q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.2\(4r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.3\(1p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(2k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(2m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.0\(2n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2t\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2u\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.1\(2v\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(1m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(2l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(2o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(3s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(4d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(4e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(5d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(5e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(5f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(6i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(7f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(7k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(8d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(9b\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(9f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(9h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(10e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(10f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(10g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:3.2\(41d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.0\(1h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.0\(2c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.0\(3c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.0\(3d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(1a\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(1j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2u\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2w\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.1\(2x\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(1g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(1i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(1j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(3j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(3l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(3n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(3q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(4i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(4k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(4o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(4p\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(5k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(5l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(5n\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(6d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(6g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(6h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(6l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(6o\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7q\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7r\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7s\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7t\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7u\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7v\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:4.2\(7w\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.0\(1k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.0\(1l\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.0\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.0\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.1\(1h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.1\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.1\(3e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.1\(4c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(1g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(2e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(2f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(2g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(3e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(3f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(3g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(4d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(4e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(4f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(4h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(5c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(5d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(5e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(6e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(6g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(6h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(7f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(7g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8f\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.2\(8i\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.3\(1d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.3\(2a\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.3\(2b\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:5.3\(2c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(1g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(1j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(2h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(2j\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(3d\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(3e\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(3g\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(4c\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(5h\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:application_policy_infrastructure_controller:6.0\(5j\):*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00271
Низкий
6.5 Medium
CVSS3
7.2 High
CVSS3
Дефекты
CWE-250
Связанные уязвимости
CVSS3: 6.5
github
больше 1 года назад
A vulnerability in the software upgrade component of Cisco Application Policy Infrastructure Controller (APIC) and Cisco Cloud Network Controller, formerly Cisco Cloud APIC, could allow an authenticated, remote attacker with Administrator-level privileges to install a modified software image, leading to arbitrary code injection on an affected system. This vulnerability is due to insufficient signature validation of software images. An attacker could exploit this vulnerability by installing a modified software image. A successful exploit could allow the attacker to execute arbitrary code on the affected system and elevate their privileges to root. Note: Administrators should always validate the hash of any upgrade image before uploading it to Cisco APIC and Cisco Cloud Network Controller.
CVSS3: 6.5
fstec
больше 1 года назад
Уязвимость средства управления информационной инфраструктурой Cisco Application Policy Infrastructure Controller, связанная с ошибками разграничения доступа, позволяющая нарушителю выполнить произвольный код и повысить свои привилегии до уровня root
EPSS
Процентиль: 50%
0.00271
Низкий
6.5 Medium
CVSS3
7.2 High
CVSS3
Дефекты
CWE-250