CVE-2016-6460
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2016-6460
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the FTP Representational State Transfer Application Programming Interface (REST API) for Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass FTP malware detection rules and download malware over an FTP connection. Cisco Firepower System Software is affected when the device has a file policy with malware block configured for FTP connections. More Information: CSCuv36188 CSCuy91156. Known Affected Releases: 5.4.0.2 5.4.1.1 5.4.1.6 6.0.0 6.1.0 6.2.0. Known Fixed Releases: 6.0.0.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Firepower System Software 安全绕过漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower System Software是美国思科(Cisco)公司的一款下一代防火墙产品(NGFW)。FTP Representational State Transfer Application Programming Interface(REST API)是其中的一个用于FTP的网络应用程序API。 Cisco Firepower System Software的FTP REST API中存在安全漏洞。远程攻击者可利用该漏洞绕过FTP恶意软件检测规则,通过FTP连接下载恶意软件
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Cisco Firepower System Software 5.4.0.2 through 6.2.0 | Cisco Firepower System Software 5.4.0.2 through 6.2.0 | - |
II. Public POCs for CVE-2016-6460
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2016-6460
Please Login to view more intelligence information
Same Patch Batch · n/a · 2016-11-19 · 13 CVEs total
| CVE-2016-9149 | Palo Alto Networks PAN-OS Addresses Object解析器安全漏洞 | |
| CVE-2016-9150 | Palo Alto Networks PAN-OS 缓冲区错误漏洞 | |
| CVE-2016-9151 | Palo Alto Networks PAN-OS 安全漏洞 | |
| CVE-2016-6450 | Cisco IOS XE Software 安全漏洞 | |
| CVE-2016-6457 | Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure 拒绝服务 | |
| CVE-2016-6458 | Cisco AsyncOS for Cisco Email Security Appliances 安全绕过漏洞 | |
| CVE-2016-6459 | Cisco TelePresence Endpoint 本地命令注入漏洞 | |
| CVE-2016-6461 | Cisco Adaptive Security Appliance 命令注入漏洞 | |
| CVE-2016-6462 | Cisco AsyncOS for Cisco Email Security Appliances 远程安全绕过漏洞 | |
| CVE-2016-6463 | Cisco AsyncOS for Cisco Email Security Appliances 安全绕过漏洞 | |
| CVE-2016-6466 | Cisco ASR 5000 Series routers 拒绝服务漏洞 | |
| CVE-2016-6472 | Cisco Unified Communications Manager 跨站脚本漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2016-6460
No comments yet