Arbitrary Command Execution Vulnerability in Cisco Secure Desktop (CSD)

Arbitrary Command Execution Vulnerability in Cisco Secure Desktop (CSD)

CVE-2015-0691 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

A certain Cisco JAR file, as distributed in Cache Cleaner in Cisco Secure Desktop (CSD), allows remote attackers to execute arbitrary commands via a crafted web site, aka Bug ID CSCup83001.

Learn more about our Cis Benchmark Audit For Cisco.