CVE-2016-1411
First published: Wed Dec 14 2016(Updated: )
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SMA) could allow an unauthenticated, remote attacker to impersonate the update server. More Information: CSCul88715, CSCul94617, CSCul94627. Known Affected Releases: 7.5.2-201 7.6.3-025 8.0.1-023 8.5.0-000 8.5.0-ER1-198 7.5.2-HP2-303 7.7.0-608 7.7.5-835 8.5.1-021 8.8.0-000 7.9.1-102 8.0.0-404 8.1.1-013 8.2.0-222. Known Fixed Releases: 8.0.2-069 8.0.2-074 8.5.7-042 9.1.0-032 8.5.2-027 9.6.1-019.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Content Security Management | =9.1.0 | |
| Cisco Content Security Management | =9.1.0-004 | |
| Cisco Content Security Management | =9.1.0-031 | |
| Cisco Content Security Management | =9.1.0-033 | |
| Cisco Content Security Management | =9.1.0-103 | |
| Cisco Content Security Management | =9.6.0 | |
| Cisco Email Security Appliance Firmware | =7.5.2-201 | |
| Cisco Email Security Appliance Firmware | =7.5.2-hp2-303 | |
| Cisco Email Security Appliance Firmware | =7.6.3-025 | |
| Cisco Email Security Appliance Firmware | =8.0.1-023 | |
| Cisco Email Security Appliance Firmware | =8.5.0-000 | |
| Cisco Email Security Appliance Firmware | =8.5.0-er1-198 | |
| Cisco Email Security Appliance Firmware | =8.5.1-021 | |
| Cisco Web Security Appliance | =7.7.0-608 | |
| Cisco Web Security Appliance | =7.7.5-835 | |
| Cisco Web Security Appliance | =8.8.0-000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-1411?
CVE-2016-1411 has been rated as critical due to its potential for unauthenticated remote exploitation.
How do I fix CVE-2016-1411?
To mitigate CVE-2016-1411, users should upgrade to the patched versions of Cisco AsyncOS Software as recommended by Cisco.
What products are affected by CVE-2016-1411?
CVE-2016-1411 affects multiple Cisco products including the Email Security Appliance, Web Security Appliance, and Content Management Security Appliance.
Can CVE-2016-1411 be exploited remotely?
Yes, CVE-2016-1411 can be exploited remotely by an unauthenticated attacker.
What are the potential impacts of CVE-2016-1411?
The exploitation of CVE-2016-1411 could allow attackers to impersonate the update server, potentially leading to further compromise of the targeted systems.
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/severity
- agent/last-modified-date
- agent/author
- agent/type
- agent/description
- agent/first-publish-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco content security management
- version/cisco content security management/9.1.0
- version/cisco content security management/9.1.0-004
- version/cisco content security management/9.1.0-031
- version/cisco content security management/9.1.0-033
- version/cisco content security management/9.1.0-103
- version/cisco content security management/9.6.0
- canonical/cisco email security appliance firmware
- version/cisco email security appliance firmware/7.5.2-201
- version/cisco email security appliance firmware/7.5.2-hp2-303
- version/cisco email security appliance firmware/7.6.3-025
- version/cisco email security appliance firmware/8.0.1-023
- version/cisco email security appliance firmware/8.5.0-000
- version/cisco email security appliance firmware/8.5.0-er1-198
- version/cisco email security appliance firmware/8.5.1-021
- canonical/cisco web security appliance
- version/cisco web security appliance/7.7.0-608
- version/cisco web security appliance/7.7.5-835
- version/cisco web security appliance/8.8.0-000