Lucene search

[email protected]NVD:CVE-2016-1397

HistoryJun 19, 2016 - 1:59 a.m.

CVE-2016-1397

2016-06-1901:59:05

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

41.4%

JSON

Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service (device reload) via crafted configuration commands in an HTTP request, aka Bug ID CSCux82523.

Affected configurations

Nvd

Node

ciscorv215w_wireless-n_vpn_routerMatch-

AND

ciscorv215w_wireless-n_vpn_router_firmwareMatch1.1.0.5

ciscorv215w_wireless-n_vpn_router_firmwareMatch1.1.0.6

ciscorv215w_wireless-n_vpn_router_firmwareMatch1.2.0.14

ciscorv215w_wireless-n_vpn_router_firmwareMatch1.2.0.15

ciscorv215w_wireless-n_vpn_router_firmwareMatch1.3.0.7

Node

ciscorv110w_wireless-n_vpn_firewallMatch-

AND

ciscorv110w_wireless-n_vpn_firewall_firmwareMatch1.1.0.9

ciscorv110w_wireless-n_vpn_firewall_firmwareMatch1.2.0.9

ciscorv110w_wireless-n_vpn_firewall_firmwareMatch1.2.0.10

ciscorv110w_wireless-n_vpn_firewall_firmwareMatch1.2.1.4

Node

ciscorv130w_wireless-n_multifunction_vpn_routerMatch-

AND

ciscorv130w_wireless-n_multifunction_vpn_router_firmwareMatch1.0.0.21

ciscorv130w_wireless-n_multifunction_vpn_router_firmwareMatch1.0.1.3

ciscorv130w_wireless-n_multifunction_vpn_router_firmwareMatch1.0.2.7

VendorProductVersionCPE
ciscorv215w_wireless-n_vpn_router-cpe:2.3:h:cisco:rv215w_wireless-n_vpn_router:-:*:*:*:*:*:*:*
ciscorv215w_wireless-n_vpn_router_firmware1.1.0.5cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.1.0.5:*:*:*:*:*:*:*
ciscorv215w_wireless-n_vpn_router_firmware1.1.0.6cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.1.0.6:*:*:*:*:*:*:*
ciscorv215w_wireless-n_vpn_router_firmware1.2.0.14cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.2.0.14:*:*:*:*:*:*:*
ciscorv215w_wireless-n_vpn_router_firmware1.2.0.15cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.2.0.15:*:*:*:*:*:*:*
ciscorv215w_wireless-n_vpn_router_firmware1.3.0.7cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.3.0.7:*:*:*:*:*:*:*
ciscorv110w_wireless-n_vpn_firewall-cpe:2.3:h:cisco:rv110w_wireless-n_vpn_firewall:-:*:*:*:*:*:*:*
ciscorv110w_wireless-n_vpn_firewall_firmware1.1.0.9cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.1.0.9:*:*:*:*:*:*:*
ciscorv110w_wireless-n_vpn_firewall_firmware1.2.0.9cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.2.0.9:*:*:*:*:*:*:*
ciscorv110w_wireless-n_vpn_firewall_firmware1.2.0.10cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.2.0.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	rv215w_wireless-n_vpn_router	-	cpe:2.3:h:cisco:rv215w_wireless-n_vpn_router:-:::::::*
cisco	rv215w_wireless-n_vpn_router_firmware	1.1.0.5	cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.1.0.5:::::::*
cisco	rv215w_wireless-n_vpn_router_firmware	1.1.0.6	cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.1.0.6:::::::*
cisco	rv215w_wireless-n_vpn_router_firmware	1.2.0.14	cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.2.0.14:::::::*
cisco	rv215w_wireless-n_vpn_router_firmware	1.2.0.15	cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.2.0.15:::::::*
cisco	rv215w_wireless-n_vpn_router_firmware	1.3.0.7	cpe:2.3:o:cisco:rv215w_wireless-n_vpn_router_firmware:1.3.0.7:::::::*
cisco	rv110w_wireless-n_vpn_firewall	-	cpe:2.3:h:cisco:rv110w_wireless-n_vpn_firewall:-:::::::*
cisco	rv110w_wireless-n_vpn_firewall_firmware	1.1.0.9	cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.1.0.9:::::::*
cisco	rv110w_wireless-n_vpn_firewall_firmware	1.2.0.9	cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.2.0.9:::::::*
cisco	rv110w_wireless-n_vpn_firewall_firmware	1.2.0.10	cpe:2.3:o:cisco:rv110w_wireless-n_vpn_firewall_firmware:1.2.0.10:::::::*

Rows per page:

1-10 of 151

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv2

www.securitytracker.com/id/1036115

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

41.4%

JSON

Related for NVD:CVE-2016-1397

cisco1 openvas1 cvelist1 prion1 cve1