CVE-2016-6367 — Cisco Adaptive Security Appliance (ASA) CLI Remote Code Execution Vulnerability
2022-05-24 • CISA Known Exploited Vulnerability
[event] A vulnerability in the command-line interface (CLI) parser of Cisco ASA software could allow an authenticated, local attacker to create a denial-of-service (DoS) condition or potentially execute code.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Cisco |
| Product | Adaptive Security Appliance (ASA) |
| CWE | CWE-77 |
| CVE ID | CVE-2016-6367 |
| Date Added | 2022-05-24 |
| Due Date | 2022-06-14 |
| Ransomware Campaign | Unknown |
> MITIGATION
Apply updates per vendor instructions.
Due Date: 2022-06-14