CVE-2015-4186

Name of the Vulnerable Software and Affected Versions Cisco Virtualization Experience (VXC) Client 6215 version 11.2(27.4)

Description The diagnostics subsystem in the administrative web interface allows local users to gain privileges for OS command execution via a crafted option value. This issue exists due to the lack of neutralization of special elements used in the operating system command. Exploitation of this issue may allow an attacker, acting locally, to obtain privileges that permit execution of operating system commands by modifying certain values.

Recommendations For Cisco Virtualization Experience (VXC) Client 6215 version 11.2(27.4), at the moment, there is no information about a newer version that contains a fix for this vulnerability.