CVE-2016-6367

Published: Aug 18, 2016Modified: Apr 22, 2026CISA KEV

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Cisco Adaptive Security Appliance (ASA) Software before 8.4(1) on ASA 5500, ASA 5500-X, PIX, and FWSM devices allows local users to gain privileges via invalid CLI commands, aka Bug ID CSCtu74257 or EPICBANANA.

Affected (2)

Products: Cisco: Adaptive Security Appliance Software

1 product

Adaptive Security Appliance Software

Configuration A

2 vulnerable · 29 platform

Vulnerable Software	Affected Versions
Cisco Adaptive Security Appliance Software	From 7.2.0 to 8.4\(3\)
Cisco Adaptive Security Appliance Software	From 8.5 to 9.0\(1\)

Running on/with	Platform Versions
Cisco Asa 5500	All versions
Cisco Asa 5500 X	All versions
Cisco Asa 5500 Csc Ssm	All versions
Cisco Asa 5505	All versions
Cisco Asa 5506 X	All versions
Cisco Asa 5506h X	All versions
Cisco Asa 5506w X	All versions
Cisco Asa 5508 X	All versions
Cisco Asa 5510	All versions
Cisco Asa 5512 X	All versions
Cisco Asa 5515 X	All versions
Cisco Asa 5516 X	All versions
Cisco Asa 5520	All versions
Cisco Asa 5525 X	All versions
Cisco Asa 5540	All versions
Cisco Asa 5545 X	All versions
Cisco Asa 5550	All versions
Cisco Asa 5555 X	All versions
Cisco Asa 5580	All versions
Cisco Asa 5585 X	All versions
Cisco Firewall Services Module	All versions
Cisco Pix Firewall 501	All versions
Cisco Pix Firewall 506	All versions
Cisco Pix Firewall 506e	All versions
Cisco Pix Firewall 515	All versions
Cisco Pix Firewall 515e	All versions
Cisco Pix Firewall 520	All versions
Cisco Pix Firewall 525	All versions
Cisco Pix Firewall 535	All versions

Related CWEs

Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

References (15)

http://blogs.cisco.com/security/shadow-brokers

Source: psirt@cisco.com

ExploitPress/Media CoverageVendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-cli

Source: psirt@cisco.com

Vendor Advisory

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516

Source: psirt@cisco.com

Vendor Advisory

http://www.securityfocus.com/bid/92520

Source: psirt@cisco.com

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036636

Source: psirt@cisco.com

Broken LinkThird Party AdvisoryVDB Entry

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40271.zip

Source: psirt@cisco.com

Broken LinkExploit

https://www.exploit-db.com/exploits/40271/

Source: psirt@cisco.com

Third Party AdvisoryVDB Entry

http://blogs.cisco.com/security/shadow-brokers

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPress/Media CoverageVendor Advisory

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-asa-cli

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-56516

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/92520

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1036636

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB Entry

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/40271.zip

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkExploit

https://www.exploit-db.com/exploits/40271/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-6367

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

US Government Resource

Timeline

No history available yet.