Vulnerability in Cisco Application_policy_infrastructure_controller

CVE-2015-6424

The boot manager in Cisco Application Policy Infrastructure Controller (APIC) 1.1(0.920a) allows local users to bypass intended access restrictions and obtain single-user-mode root access via unspecified vectors, aka Bug ID CSCuu83985.

EPSS: 0.001 (25.8th percentile) — read the EPSS interpretation.

Affected products

Cisco Application_policy_infrastructure_controller — versions 1.1\(0.920a\)
N/a — versions n/a

Weakness classification (CWE)

CWE-255

References

20151216 Cisco Application Policy Infrastructure Controller Insecure Credentials Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
79410 (vdb-entry, x_refsource_BID)
1034468 (vdb-entry, x_refsource_SECTRACK)