← Back

CVE-2016-1435

nvd nist
Published: Jun 23, 2016Modified: May 6, 2026

JSON object

Loading...
7.0
Vector
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.0 / Impact: 5.9
Source: NVD

Description

Cisco 8800 phones with software 11.0(1) do not properly enforce mounted-filesystem permissions, which allows local users to write to arbitrary files by leveraging shell access, aka Bug ID CSCuz03014.

Affected (1)

Cisco
1 product
Ip Phone 8800 Series Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ip Phone 8800 Series Firmware
Version 11.0(1)
Running on/withPlatform Versions
Cisco
Ip Phone 8800
All versions

Related CWEs

CWE-264
CWE-264

References (4)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.