Attacker Value
Unknown
CVE-2016-6367
CVE-2016-6367
(Last updated October 05, 2023) ▾
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Description
Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.
Add Assessment
1
Technical Analysis
Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786. Original tweet announcing this spreadsheet with the 2020 findings can be found at https://twitter.com/maddiestone/status/1329837665378725888
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
7.8 High
Impact Score:
5.9
Exploitability Score:
1.8
Attack Vector (AV):
Local
Attack Complexity (AC):
Low
Privileges Required (PR):
Low
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
High
General Information
Vendors
- cisco
Products
- adaptive security appliance software 7.0.1,
- adaptive security appliance software 7.0.1.4,
- adaptive security appliance software 7.0.2,
- adaptive security appliance software 7.0.3,
- adaptive security appliance software 7.0.4,
- adaptive security appliance software 7.0.4.2,
- adaptive security appliance software 7.0.5,
- adaptive security appliance software 7.0.5.12,
- adaptive security appliance software 7.0.6,
- adaptive security appliance software 7.0.6.18,
- adaptive security appliance software 7.0.6.22,
- adaptive security appliance software 7.0.6.26,
- adaptive security appliance software 7.0.6.29,
- adaptive security appliance software 7.0.6.32,
- adaptive security appliance software 7.0.6.4,
- adaptive security appliance software 7.0.6.8,
- adaptive security appliance software 7.0.7,
- adaptive security appliance software 7.0.7.1,
- adaptive security appliance software 7.0.7.12,
- adaptive security appliance software 7.0.7.4,
- adaptive security appliance software 7.0.7.9,
- adaptive security appliance software 7.0.8,
- adaptive security appliance software 7.0.8.12,
- adaptive security appliance software 7.0.8.13,
- adaptive security appliance software 7.0.8.2,
- adaptive security appliance software 7.0.8.8,
- adaptive security appliance software 7.1.2,
- adaptive security appliance software 7.1.2.16,
- adaptive security appliance software 7.1.2.20,
- adaptive security appliance software 7.1.2.24,
- adaptive security appliance software 7.1.2.28,
- adaptive security appliance software 7.1.2.38,
- adaptive security appliance software 7.1.2.42,
- adaptive security appliance software 7.1.2.46,
- adaptive security appliance software 7.1.2.49,
- adaptive security appliance software 7.1.2.53,
- adaptive security appliance software 7.1.2.61,
- adaptive security appliance software 7.1.2.64,
- adaptive security appliance software 7.1.2.72,
- adaptive security appliance software 7.1.2.81,
- adaptive security appliance software 7.2.1,
- adaptive security appliance software 7.2.1.13,
- adaptive security appliance software 7.2.1.19,
- adaptive security appliance software 7.2.1.24,
- adaptive security appliance software 7.2.1.9,
- adaptive security appliance software 7.2.2,
- adaptive security appliance software 7.2.2.10,
- adaptive security appliance software 7.2.2.14,
- adaptive security appliance software 7.2.2.18,
- adaptive security appliance software 7.2.2.19,
- adaptive security appliance software 7.2.2.22,
- adaptive security appliance software 7.2.2.34,
- adaptive security appliance software 7.2.2.6,
- adaptive security appliance software 7.2.3,
- adaptive security appliance software 7.2.3.1,
- adaptive security appliance software 7.2.3.12,
- adaptive security appliance software 7.2.3.16,
- adaptive security appliance software 7.2.4,
- adaptive security appliance software 7.2.4.18,
- adaptive security appliance software 7.2.4.25,
- adaptive security appliance software 7.2.4.27,
- adaptive security appliance software 7.2.4.30,
- adaptive security appliance software 7.2.4.33,
- adaptive security appliance software 7.2.4.6,
- adaptive security appliance software 7.2.4.9,
- adaptive security appliance software 7.2.5,
- adaptive security appliance software 7.2.5.10,
- adaptive security appliance software 7.2.5.12,
- adaptive security appliance software 7.2.5.16,
- adaptive security appliance software 7.2.5.2,
- adaptive security appliance software 7.2.5.4,
- adaptive security appliance software 7.2.5.7,
- adaptive security appliance software 7.2.5.8,
- adaptive security appliance software 8.0.1.2,
- adaptive security appliance software 8.0.2,
- adaptive security appliance software 8.0.2.11,
- adaptive security appliance software 8.0.2.15,
- adaptive security appliance software 8.0.3,
- adaptive security appliance software 8.0.3.12,
- adaptive security appliance software 8.0.3.19,
- adaptive security appliance software 8.0.3.6,
- adaptive security appliance software 8.0.4,
- adaptive security appliance software 8.0.4.16,
- adaptive security appliance software 8.0.4.23,
- adaptive security appliance software 8.0.4.25,
- adaptive security appliance software 8.0.4.28,
- adaptive security appliance software 8.0.4.3,
- adaptive security appliance software 8.0.4.31,
- adaptive security appliance software 8.0.4.32,
- adaptive security appliance software 8.0.4.33,
- adaptive security appliance software 8.0.4.9,
- adaptive security appliance software 8.0.5,
- adaptive security appliance software 8.0.5.20,
- adaptive security appliance software 8.0.5.23,
- adaptive security appliance software 8.0.5.25,
- adaptive security appliance software 8.0.5.27,
- adaptive security appliance software 8.0.5.28,
- adaptive security appliance software 8.0.5.31,
- adaptive security appliance software 8.1.0.104,
- adaptive security appliance software 8.1.1,
- adaptive security appliance software 8.1.1.6,
- adaptive security appliance software 8.1.2,
- adaptive security appliance software 8.1.2.13,
- adaptive security appliance software 8.1.2.15,
- adaptive security appliance software 8.1.2.16,
- adaptive security appliance software 8.1.2.19,
- adaptive security appliance software 8.1.2.23,
- adaptive security appliance software 8.1.2.24,
- adaptive security appliance software 8.1.2.49,
- adaptive security appliance software 8.1.2.50,
- adaptive security appliance software 8.1.2.55,
- adaptive security appliance software 8.1.2.56,
- adaptive security appliance software 8.2.0.45,
- adaptive security appliance software 8.2.1,
- adaptive security appliance software 8.2.1.11,
- adaptive security appliance software 8.2.2,
- adaptive security appliance software 8.2.2.10,
- adaptive security appliance software 8.2.2.12,
- adaptive security appliance software 8.2.2.16,
- adaptive security appliance software 8.2.2.17,
- adaptive security appliance software 8.2.2.9,
- adaptive security appliance software 8.2.3,
- adaptive security appliance software 8.2.4,
- adaptive security appliance software 8.2.4.1,
- adaptive security appliance software 8.2.4.4,
- adaptive security appliance software 8.2.5,
- adaptive security appliance software 8.2.5.13,
- adaptive security appliance software 8.2.5.22,
- adaptive security appliance software 8.2.5.26,
- adaptive security appliance software 8.2.5.33,
- adaptive security appliance software 8.2.5.40,
- adaptive security appliance software 8.2.5.41,
- adaptive security appliance software 8.2.5.46,
- adaptive security appliance software 8.2.5.48,
- adaptive security appliance software 8.2.5.50,
- adaptive security appliance software 8.2.5.52,
- adaptive security appliance software 8.2.5.55,
- adaptive security appliance software 8.2.5.57,
- adaptive security appliance software 8.3.1,
- adaptive security appliance software 8.3.1.1,
- adaptive security appliance software 8.3.1.4,
- adaptive security appliance software 8.3.1.6,
- adaptive security appliance software 8.3.2,
- adaptive security appliance software 8.3.2.13,
- adaptive security appliance software 8.3.2.23,
- adaptive security appliance software 8.3.2.25,
- adaptive security appliance software 8.3.2.31,
- adaptive security appliance software 8.3.2.33,
- adaptive security appliance software 8.3.2.34,
- adaptive security appliance software 8.3.2.37,
- adaptive security appliance software 8.3.2.39,
- adaptive security appliance software 8.3.2.4,
- adaptive security appliance software 8.3.2.40,
- adaptive security appliance software 8.3.2.41,
- adaptive security appliance software 8.3.2.44
Exploited in the Wild
References
Advisory
