SynopsisThe remote device is missing a vendor-supplied security patch
DescriptionAccording to its self-reported version, Cisco Application Policy Infrastructure Controller (APIC) is affected by a vulnerability in the FUSE filesystem functionality. This is due to insufficient input validation of CLI commands.
An authenticated, local attacker can exploit this by alter certain definitions in a affected file, allowing them to execute commands and gain root privilages.
Please see the included Cisco BIDs and Cisco Security Advisory for more information
SolutionUpgrade to the relevant fixed version referenced in Cisco bug ID CSCvn09779