Cisco Systems has inadvertently shipped an in-house exploit code that was used in test scripts as part of its TelePresence Video Communication Server and Expressway Series software. The code exploits the Dirty Cow vulnerability (CVE-2016-5195), a well-known privilege escalation vulnerability in the Linux Kernel, which came to light in 2016. The blunder was discovered during internal security testing. Cisco also disclosed 15 flaws in various products, including three critical bugs in the company s Small Business Switches.
Source: https://threatpost.com/cisco-accidentally-released-dirty-cow-exploit-code-in-software/138888/