Lucene search

[email protected]CVE-2016-6421

HistoryOct 05, 2016 - 8:59 p.m.

CVE-2016-6421

2016-10-0520:59:00

CWE-399

[email protected]

web.nvd.nist.gov

cisco

ios xr

denial of service

vulnerability

cve-2016-6421

nvd

cisco bug id cscvb05643

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.2 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

JSON

Cisco IOS XR 5.2.2 allows remote attackers to cause a denial of service (process restart) via a crafted OSPF Link State Advertisement (LSA) update, aka Bug ID CSCvb05643.

CPENameOperatorVersion
cisco:ios_xrcisco ios xreq5.2.2

CPE	Name	Operator	Version
cisco:ios_xr	cisco ios xr	eq	5.2.2

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-ospf

www.securityfocus.com/bid/93212

www.securitytracker.com/id/1036909

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

5.2 Medium

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

71.8%

JSON

Related for CVE-2016-6421

prion1 openvas1 cisco1 cvelist1