CVE-2016-9012

2017-01-2321:00:00

mitre

www.cve.org

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

58.6%

JSON

CloudVision Portal (CVP) before 2016.1.2.1 allows remote authenticated users to gain access to the internal configuration mechanisms via the management plane, related to a request to /web/system/console/bundle.

References

www.securityfocus.com/bid/94635

www.arista.com/en/support/advisories-notices/security-advisories/2116-security-advisory-27