Weakness Name | Source | |
---|---|---|
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component. |
Metrics | Score | Severity | CVSS Vector | Source |
---|---|---|---|---|
V2 | 7.8 | AV:N/AC:L/Au:N/C:N/I:N/A:C | [email protected] |
Cisco>>Ios >> Version 15.0
Cisco>>Ios >> Version 15.1
Cisco>>Ios >> Version 15.2
Cisco>>Ios >> Version 15.4
Cisco>>Ios_xe >> Version 3.3\(.0\)xo
Cisco>>Ios_xe >> Version 3.3.0se
Cisco>>Ios_xe >> Version 3.3.1se
Cisco>>Ios_xe >> Version 3.5.0e
Cisco>>Ios_xe >> Version 3.5.1e
Cisco>>Ios_xe >> Version 3.11.0s