CVE-2015-6435

An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager before 2.2(4b), 2.2(5) before 2.2(5a), and 3.0 before 3.0(2e) allows remote attackers to execute arbitrary shell commands via a crafted HTTP request, aka Bug ID CSCur90888.

Severity	CRITICAL
CVSS	9.8
CWE	CWE-78
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Firepower Extensible Operating System	cisco-sa-20160120-ucsm	Cisco OpenVuln
Cisco Unified Computing System (Managed)	cisco-sa-20160120-ucsm	Cisco OpenVuln
Cisco Firepower Extensible Operating System	cisco-sa-20160120-ucsm	Cisco OpenVuln
Cisco Firepower 9000 Series	cisco-sa-20160120-ucsm	Cisco OpenVuln