Total vulnerabilities in the database
Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access by leveraging administrative privilege, aka Bug ID CSCur09815.
| Software | From | Fixed in |
|---|---|---|
| cisco / ios_xe | - | 3.5e.x |
| cisco / air-ct5760 | - | - |
| cisco / ws-c3850 | - | - |
| cisco / ws-c3860 | - | - |