Vulnerabilities > Cisco > Application Policy Infrastructure Controller > 1.3.2f

DATE CVE VULNERABILITY TITLE RISK
2017-08-17 CVE-2017-6767 Improper Privilege Management vulnerability in Cisco Application Policy Infrastructure Controller
A vulnerability in Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote attacker to gain higher privileges than the account is assigned.
network
high complexity
cisco CWE-269
7.1
2016-09-24 CVE-2016-6413 Permissions, Privileges, and Access Controls vulnerability in Cisco Application Policy Infrastructure Controller 1.3(2F)
The installation procedure on Cisco Application Policy Infrastructure Controller (APIC) devices 1.3(2f) mishandles binary files, which allows local users to obtain root access via unspecified vectors, aka Bug ID CSCva50496.
local
low complexity
cisco CWE-264
7.8