Weakness Name | Source | |
---|---|---|
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component. |
Metrics | Score | Severity | CVSS Vector | Source |
---|---|---|---|---|
V2 | 7.8 | AV:N/AC:L/Au:N/C:N/I:N/A:C | [email protected] |
Cisco>>Ios >> Version 15.1
Cisco>>Ios >> Version 15.2
Cisco>>Ios >> Version 15.3
Cisco>>Ios >> Version 15.4
Cisco>>Ios_xe >> Version 3.1.0s
Cisco>>Ios_xe >> Version 3.1.1s
Cisco>>Ios_xe >> Version 3.1.2s
Cisco>>Ios_xe >> Version 3.1.3s
Cisco>>Ios_xe >> Version 3.1.4s
Cisco>>Ios_xe >> Version 3.2.0s
Cisco>>Ios_xe >> Version 3.2.1s
Cisco>>Ios_xe >> Version 3.2.2s
Cisco>>Ios_xe >> Version 3.3.0s
Cisco>>Ios_xe >> Version 3.3.1s
Cisco>>Ios_xe >> Version 3.3.2s
Cisco>>Ios_xe >> Version 3.3.3s
Cisco>>Ios_xe >> Version 3.4.0s
Cisco>>Ios_xe >> Version 3.4.1s
Cisco>>Ios_xe >> Version 3.4.2s
Cisco>>Ios_xe >> Version 3.4.3s
Cisco>>Ios_xe >> Version 3.4.4s
Cisco>>Ios_xe >> Version 3.4.5s
Cisco>>Ios_xe >> Version 3.5.0s
Cisco>>Ios_xe >> Version 3.5.1s
Cisco>>Ios_xe >> Version 3.5.2s
Cisco>>Ios_xe >> Version 3.6s\(.0\)
Cisco>>Ios_xe >> Version 3.6s\(.1\)
Cisco>>Ios_xe >> Version 3.6s\(.2\)
Cisco>>Ios_xe >> Version 3.7\(0\)s
Cisco>>Ios_xe >> Version 3.7\(1\)as
Cisco>>Ios_xe >> Version 3.7\(2\)s
Cisco>>Ios_xe >> Version 3.7\(3\)s
Cisco>>Ios_xe >> Version 3.7\(4\)s
Cisco>>Ios_xe >> Version 3.7\(5\)s
Cisco>>Ios_xe >> Version 3.8.0s
Cisco>>Ios_xe >> Version 3.8s\(.0\)
Cisco>>Ios_xe >> Version 3.8s\(.1\)
Cisco>>Ios_xe >> Version 3.8s\(.2\)
Cisco>>Ios_xe >> Version 3.9s\(.0\)
Cisco>>Ios_xe >> Version 3.9s\(.1\)
Cisco>>Ios_xe >> Version 3.9s\(.2\)
Cisco>>Ios_xe >> Version 3.10
Cisco>>Ios_xe >> Version 3.10.0s
Cisco>>Ios_xe >> Version 3.11.0s
Cisco>>Ios_xe >> Version 3.11.1s
Cisco>>Ios_xe >> Version 3.11.2s