CVE-2016-9223

CVE Database · CVE-2016-9223

CVE-2016-9223

· N/AModified

CVSS v3.1

N/A

EPSS

2.93%

Published

Dec 26, 2016

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the Docker Engine configuration of Cisco CloudCenter Orchestrator (CCO; formerly CliQr) could allow an unauthenticated, remote attacker to install Docker containers with high privileges on the affected system. Affected Products: This vulnerability affect all releases of Cisco CloudCenter Orchestrator (CCO) deployments where the Docker Engine TCP port 2375 is open on the system and bound to local address 0.0.0.0 (any interface).

Weaknesses (CWE)

CWE-264

Affected Products (4)

cisco · cloudcenter_orchestratorvulnerable

References (4)

http://www.securityfocus.com/bid/95024

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161221-cco

MitigationVendor Advisory

http://www.securityfocus.com/bid/95024

Third Party AdvisoryVDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161221-cco

MitigationVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs