Lucene search

[email protected]NVD:CVE-2016-6391

HistoryOct 05, 2016 - 8:59 p.m.

CVE-2016-6391

2016-10-0520:59:06

CWE-399

[email protected]

web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.8%

JSON

Cisco IOS 12.2 and 15.0 through 15.3 allows remote attackers to cause a denial of service (traffic-processing outage) via a crafted series of Common Industrial Protocol (CIP) requests, aka Bug ID CSCur69036.

Affected configurations

NVD

Node

ciscoiosMatch12.2\(44\)ex

ciscoiosMatch12.2\(44\)ex1

ciscoiosMatch12.2\(46\)se

ciscoiosMatch12.2\(46\)se1

ciscoiosMatch12.2\(46\)se2

ciscoiosMatch12.2\(50\)se

ciscoiosMatch12.2\(50\)se1

ciscoiosMatch12.2\(50\)se2

ciscoiosMatch12.2\(50\)se3

ciscoiosMatch12.2\(50\)se4

ciscoiosMatch12.2\(50\)se5

ciscoiosMatch12.2\(52\)se

ciscoiosMatch12.2\(52\)se1

ciscoiosMatch12.2\(55\)se

ciscoiosMatch12.2\(55\)se3

ciscoiosMatch12.2\(55\)se4

ciscoiosMatch12.2\(55\)se5

ciscoiosMatch12.2\(55\)se6

ciscoiosMatch12.2\(55\)se7

ciscoiosMatch12.2\(55\)se8

ciscoiosMatch12.2\(55\)se9

ciscoiosMatch12.2\(55\)se10

ciscoiosMatch12.2\(58\)se2

ciscoiosMatch15.0\(1\)ey

ciscoiosMatch15.0\(1\)ey1

ciscoiosMatch15.0\(1\)ey2

ciscoiosMatch15.0\(2\)eb

ciscoiosMatch15.0\(2\)ey

ciscoiosMatch15.0\(2\)ey1

ciscoiosMatch15.0\(2\)ey2

ciscoiosMatch15.0\(2\)ey3

ciscoiosMatch15.0\(2\)se

ciscoiosMatch15.0\(2\)se1

ciscoiosMatch15.0\(2\)se2

ciscoiosMatch15.0\(2\)se3

ciscoiosMatch15.0\(2\)se4

ciscoiosMatch15.0\(2\)se5

ciscoiosMatch15.0\(2\)se6

ciscoiosMatch15.0\(2\)se7

ciscoiosMatch15.0\(2\)se9

ciscoiosMatch15.2\(1\)ey

ciscoiosMatch15.2\(2\)e

ciscoiosMatch15.2\(2\)e1

ciscoiosMatch15.2\(2\)e2

ciscoiosMatch15.2\(2\)e4

ciscoiosMatch15.2\(3\)ea

ciscoiosMatch15.3\(3\)ja

ciscoiosMatch15.3\(3\)ja1

ciscoiosMatch15.3\(3\)ja1m

ciscoiosMatch15.3\(3\)ja1n

ciscoiosMatch15.3\(3\)ja4

ciscoiosMatch15.3\(3\)ja5

ciscoiosMatch15.3\(3\)ja7

ciscoiosMatch15.3\(3\)ja8

ciscoiosMatch15.3\(3\)ja9

ciscoiosMatch15.3\(3\)ja77

ciscoiosMatch15.3\(3\)jaa

ciscoiosMatch15.3\(3\)jab

ciscoiosMatch15.3\(3\)jax

ciscoiosMatch15.3\(3\)jax1

ciscoiosMatch15.3\(3\)jax2

ciscoiosMatch15.3\(3\)jb

ciscoiosMatch15.3\(3\)jb75

ciscoiosMatch15.3\(3\)jbb

ciscoiosMatch15.3\(3\)jbb1

ciscoiosMatch15.3\(3\)jbb2

ciscoiosMatch15.3\(3\)jbb4

ciscoiosMatch15.3\(3\)jbb5

ciscoiosMatch15.3\(3\)jbb6

ciscoiosMatch15.3\(3\)jbb6a

ciscoiosMatch15.3\(3\)jbb8

ciscoiosMatch15.3\(3\)jbb50

ciscoiosMatch15.3\(3\)jc

ciscoiosMatch15.3\(3\)jn3

ciscoiosMatch15.3\(3\)jn4

ciscoiosMatch15.3\(3\)jn7

ciscoiosMatch15.3\(3\)jn8

ciscoiosMatch15.3\(3\)jnb

ciscoiosMatch15.3\(3\)jnb1

ciscoiosMatch15.3\(3\)jnb2

ciscoiosMatch15.3\(3\)jnb3

ciscoiosMatch15.3\(3\)jnc

ciscoiosMatch15.3\(3\)jnc1

ciscoiosMatch15.3\(3\)jnp

ciscoiosMatch15.3\(3\)jnp1

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-cip

www.securityfocus.com/bid/93197

www.securitytracker.com/id/1036914

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.8%

JSON

Related for NVD:CVE-2016-6391

prion1 cve1 nessus1 openvas1 cvelist1 cisco1 threatpost1