Lucene search

[email protected]CVE-2016-1459

HistoryJul 17, 2016 - 10:59 p.m.

CVE-2016-1459

2016-07-1722:59:03

CWE-399

[email protected]

web.nvd.nist.gov

cisco

ios

bgp

denial of service

vulnerability

cve-2016-1459

nvd

cscuz21061

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.1%

JSON

Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSCuz21061.

Affected configurations

NVD

Node

ciscoiosMatch12.4\(4\)xc7

ciscoiosMatch12.4\(15\)t17

ciscoiosMatch12.4\(19a\)

ciscoiosMatch12.4\(22\)yb2

ciscoiosMatch12.4\(24\)gc4

ciscoiosMatch12.4\(24\)gc5

ciscoiosMatch15.0\(1\)ex

ciscoiosMatch15.0\(1\)m

ciscoiosMatch15.0\(1\)m9

ciscoiosMatch15.0\(1\)m10

ciscoiosMatch15.0\(1\)s

ciscoiosMatch15.0\(1\)sy

ciscoiosMatch15.0\(2\)sg

ciscoiosMatch15.1\(3\)t4

ciscoiosMatch15.1\(4\)gc2

ciscoiosMatch15.1\(4\)m10

ciscoiosMatch15.2\(3\)t4

ciscoiosMatch15.2\(4\)gc3

ciscoiosMatch15.2\(4\)m10

ciscoiosMatch15.3\(2\)t4

ciscoiosMatch15.3\(3\)m

ciscoiosMatch15.3\(3\)m7

ciscoiosMatch15.4\(2\)t4

ciscoiosMatch15.4\(3\)m5

ciscoiosMatch15.5\(2\)t3

ciscoiosMatch15.5\(3\)m3

ciscoios_xeMatch3.13.2s

ciscoios_xeMatch3.13.3s

ciscoios_xeMatch3.13.4s

ciscoios_xeMatch3.13.5s

ciscoios_xeMatch3.14.0s

ciscoios_xeMatch3.14.1s

ciscoios_xeMatch3.14.2s

ciscoios_xeMatch3.14.3s

ciscoios_xeMatch3.14.4s

ciscoios_xeMatch3.15.1cs

ciscoios_xeMatch3.15.2s

ciscoios_xeMatch3.15.3s

ciscoios_xeMatch3.16.0cs

ciscoios_xeMatch3.16.1as

ciscoios_xeMatch3.16.2s

ciscoios_xeMatch3.16.3s

ciscoios_xeMatch3.17.0s

ciscoios_xeMatch3.17.1s

ciscoios_xeMatch3.17.2s

CPENameOperatorVersion
cisco:ioscisco ioseq12.4\(4\)xc7
cisco:ioscisco ioseq12.4\(15\)t17
cisco:ioscisco ioseq12.4\(19a\)
cisco:ioscisco ioseq12.4\(22\)yb2
cisco:ioscisco ioseq12.4\(24\)gc4
cisco:ioscisco ioseq12.4\(24\)gc5
cisco:ioscisco ioseq15.0\(1\)ex
cisco:ioscisco ioseq15.0\(1\)m
cisco:ioscisco ioseq15.0\(1\)m9
cisco:ioscisco ioseq15.0\(1\)m10

CPE	Name	Operator	Version
cisco:ios	cisco ios	eq	12.4\(4\)xc7
cisco:ios	cisco ios	eq	12.4\(15\)t17
cisco:ios	cisco ios	eq	12.4\(19a\)
cisco:ios	cisco ios	eq	12.4\(22\)yb2
cisco:ios	cisco ios	eq	12.4\(24\)gc4
cisco:ios	cisco ios	eq	12.4\(24\)gc5
cisco:ios	cisco ios	eq	15.0\(1\)ex
cisco:ios	cisco ios	eq	15.0\(1\)m
cisco:ios	cisco ios	eq	15.0\(1\)m9
cisco:ios	cisco ios	eq	15.0\(1\)m10

Rows per page:

1-10 of 451

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp

www.securityfocus.com/bid/91800

www.securitytracker.com/id/1036321

4.9 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:N/I:N/A:C

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.1%

JSON

Related for CVE-2016-1459

nessus2 openvas2 cisco1 prion1 cvelist1 nvd1