CVE-2016-1411

{"id": "CVE-2016-1411", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 5.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.2}]}, "published": "2016-12-14T00:59:00.173", "references": [{"url": "http://www.securityfocus.com/bid/94791", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asyncos", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-310"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update server. More Information: CSCul88715, CSCul94617, CSCul94627. Known Affected Releases: 7.5.2-201 7.6.3-025 8.0.1-023 8.5.0-000 8.5.0-ER1-198 7.5.2-HP2-303 7.7.0-608 7.7.5-835 8.5.1-021 8.8.0-000 7.9.1-102 8.0.0-404 8.1.1-013 8.2.0-222. Known Fixed Releases: 8.0.2-069 8.0.2-074 8.5.7-042 9.1.0-032 8.5.2-027 9.6.1-019."}, {"lang": "es", "value": "Una vulnerabilidad en la funcionalidad de actualizaci\u00f3n de Cisco AsyncOS Software para Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA) y Cisco Content Management Security Appliance (SMA) puede permitir a un atacante remoto no autenticado imitar el servidor de actualizaci\u00f3n. M\u00e1s informaci\u00f3n: CSCul88715, CSCul94617, CSCul94627. Lanzamientos Afectados Conocidos: 7.5.2-201 7.6.3-025 8.0.1-023 8.5.0-000 8.5.0-ER1-198 7.5.2-HP2-303 7.7.0-608 7.7.5-835 8.5.1-021 8.8.0-000 7.9.1-102 8.0.0-404 8.1.1-013 8.2.0-222. Lanzamientos Reparados Conocidos: 8.0.2-069 8.0.2-074 8.5.7-042 9.1.0-032 8.5.2-027 9.6.1-019."}], "lastModified": "2016-12-15T15:18:46.033", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07DCBDF0-1E0D-420C-A0BA-2C4C38D13D76"}, {"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.1.0-004:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F40DB32E-31F8-44B2-896E-26232EA41873"}, {"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.1.0-031:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B68AE1E-AD02-465E-AC86-FF23591D3882"}, {"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.1.0-033:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA33E2AF-87FE-4F04-AC02-98068C81D92D"}, {"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.1.0-103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F57F5AB-DA2D-49AC-8C61-DD06DF9E8E12"}, {"criteria": "cpe:2.3:a:cisco:content_security_management_appliance:9.6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D122AF7B-1195-4F83-B8CC-50E22C4417C3"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:7.5.2-201:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11E2D3BA-C2EF-4178-B1EA-0E2318DAFE37"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:7.5.2-hp2-303:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BCDD9A3-FB62-464B-94F2-33757796CD34"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:7.6.3-025:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CD7AD8D8-C690-47C6-8A58-8499266F9659"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:8.0.1-023:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5FABFD96-9076-4838-A775-7DA478214760"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:8.5.0-000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCB92F9E-9FA2-4D50-82C2-FF0A20EB42FF"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:8.5.0-er1-198:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D9AFCF6-AFC3-4466-AB77-DA77090BBE0C"}, {"criteria": "cpe:2.3:a:cisco:email_security_appliance:8.5.1-021:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B221315F-2B45-4D0A-9A7C-9588F467AD75"}, {"criteria": "cpe:2.3:a:cisco:web_security_appliance:7.7.0-608:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "64E907A2-C0C9-4288-BAA7-B36D112EE4CA"}, {"criteria": "cpe:2.3:a:cisco:web_security_appliance:7.7.5-835:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A276AE73-EF2D-4D0F-83D6-02CCACFA373D"}, {"criteria": "cpe:2.3:a:cisco:web_security_appliance:8.8.0-000:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02CDB2C1-E72C-49A3-B96D-433A9F6A3716"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}