CVE-2016-1321 in Universal Small Cellinfo

Summary

Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

01/03/2016

Disclosure

02/15/2016

Moderation

VulDB entry created

Entries

1: VDB-80978

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

6.6

EPSS

0.00082

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-1321
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-1321
CVE Details	https://www.cvedetails.com/cve/CVE-2016-1321/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!