Is CVE-2016-1302 actively exploited?

CVE-2016-1302 has no public evidence of in-the-wild exploitation as of 2025-04-12.

What is the CVSS score for CVE-2016-1302?

CVE-2016-1302 has a CVSS score of 8.8 (HIGH severity). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

How do I patch CVE-2016-1302?

Patch guidance is available from samsung security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2016-1302.

Fix CVE-2016-1302 - HIGH samsung x14j firmware

Q: Which products are affected by CVE-2016-1302?

8 products: samsung x14j firmware, sun opensolaris, zyxel gs1900-10hp firmware, zzinc keymouse firmware, cisco nx-os, and 3 more.

Description

Cisco Application Policy Infrastructure Controller (APIC) devices with software before 1.0(3h) and 1.1 before 1.1(1j) and Nexus 9000 ACI Mode switches with software before 11.0(3h) and 11.1 before 11.1(1j) allow remote authenticated users to bypass intended RBAC restrictions via crafted REST requests, aka Bug ID CSCut12998.

CVSS Metrics

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector: network
Complexity: low
Privileges: low
User Action: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Weaknesses: CWE-284

Metadata

Primary Vendor: SAMSUNG
Published: 2/7/2016
Last Modified: 4/12/2025
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

samsung : x14j_firmwaresun : opensolariszyxel : gs1900-10hp_firmwarezzinc : keymouse_firmwarecisco : nx-ossun : opensolariszyxel : gs1900-10hp_firmwarezzinc : keymouse_firmware

Remediation Guidance

Executive Summary

View on NIST NVD