Vulnerability Description
A vulnerability in the File Management Utility, the Download File form, and the Serviceability application of Cisco Emergency Responder could allow an authenticated, remote attacker to access files in arbitrary locations on the file system of an affected device. More Information: CSCva98951 CSCva98954 CSCvb57494. Known Affected Releases: 11.5(2.10000.5). Known Fixed Releases: 12.0(0.98000.14) 12.0(0.98000.16).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Emergency Responder | 11.5\(2.10000.5\) |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/94800Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037426Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/94800Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037426Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2016-9208?
CVE-2016-9208 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability in the File Management Utility, the Download File form, and the Serviceability application of Cisco Emergency Responder could allow an authenticated, remote attacker to access files in...
How severe is CVE-2016-9208?
CVE-2016-9208 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-9208?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Emergency Responder.