CVE-2015-6383

Cisco IOS XE 15.4(3)S on ASR 1000 devices improperly loads software packages, which allows local users to bypass license restrictions and obtain certain root privileges by using the CLI to enter crafted filenames, aka Bug ID CSCuv93130.

Severity	HIGH
CVSS	7.2
CWE	CWE-264
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20151130-iosxe3s
Cisco Nexus Dashboard	cisco-sa-20151130-iosxe3s
Cisco Meraki MS Series Switches	cisco-sa-20151130-iosxe3s
Cisco IOS Software	cisco-sa-20151130-iosxe3s
Cisco IOS XE Software	cisco-sa-20151130-iosxe3s
Cisco IOS	cisco-sa-20151130-iosxe3s
Cisco ASR 1000 Series Aggregation Services Routers	cisco-sa-20151130-iosxe3s
Cisco Catalyst 9600 Series Switches	cisco-sa-20151130-iosxe3s
Cisco Catalyst 9500 Series Switches	cisco-sa-20151130-iosxe3s
Cisco Catalyst 9400 Series Switches	cisco-sa-20151130-iosxe3s
Cisco Catalyst 9300 Series Switches	cisco-sa-20151130-iosxe3s
Cisco Catalyst 9200 Series Switches	cisco-sa-20151130-iosxe3s