Lucene search

CiscoCVE-2016-1368

HistoryMay 05, 2016 - 9:59 p.m.

CVE-2016-1368

2016-05-0521:59:00

CWE-399

cisco

web.nvd.nist.gov

cve-2016-1368

cisco

firepower

system software

denial of service

dos

packet processing

outage

vulnerability

nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON

Cisco FirePOWER System Software 5.3.x through 5.3.0.6 and 5.4.x through 5.4.0.3 on FirePOWER 7000 and 8000 appliances, and on the Advanced Malware Protection (AMP) for Networks component on these appliances, allows remote attackers to cause a denial of service (packet-processing outage) via crafted packets, aka Bug ID CSCuu86214.

Affected configurations

Nvd

Node

ciscofiresight_system_softwareMatch5.2.0

ciscofiresight_system_softwareMatch5.2.0.1

ciscofiresight_system_softwareMatch5.2.0.2

ciscofiresight_system_softwareMatch5.2.0.3

ciscofiresight_system_softwareMatch5.2.0.4

ciscofiresight_system_softwareMatch5.2.0.5

ciscofiresight_system_softwareMatch5.2.0.6

ciscofiresight_system_softwareMatch5.2.0.8

ciscofiresight_system_softwareMatch5.3.0

ciscofiresight_system_softwareMatch5.3.0.1

ciscofiresight_system_softwareMatch5.3.0.2

ciscofiresight_system_softwareMatch5.3.0.3

ciscofiresight_system_softwareMatch5.3.0.4

ciscofiresight_system_softwareMatch5.3.0.5

ciscofiresight_system_softwareMatch5.3.0.6

ciscofiresight_system_softwareMatch5.3.0.7

ciscofiresight_system_softwareMatch5.3.1

ciscofiresight_system_softwareMatch5.3.1.1

ciscofiresight_system_softwareMatch5.3.1.2

ciscofiresight_system_softwareMatch5.3.1.3

ciscofiresight_system_softwareMatch5.3.1.4

ciscofiresight_system_softwareMatch5.3.1.5

ciscofiresight_system_softwareMatch5.3.1.6

ciscofiresight_system_softwareMatch5.3.1.7

ciscofiresight_system_softwareMatch5.4.0

ciscofiresight_system_softwareMatch5.4.0.1

ciscofiresight_system_softwareMatch5.4.0.2

ciscofiresight_system_softwareMatch5.4.0.3

VendorProductVersionCPE
ciscofiresight_system_software5.2.0cpe:2.3:a:cisco:firesight_system_software:5.2.0:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.1cpe:2.3:a:cisco:firesight_system_software:5.2.0.1:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.2cpe:2.3:a:cisco:firesight_system_software:5.2.0.2:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.3cpe:2.3:a:cisco:firesight_system_software:5.2.0.3:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.4cpe:2.3:a:cisco:firesight_system_software:5.2.0.4:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.5cpe:2.3:a:cisco:firesight_system_software:5.2.0.5:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.6cpe:2.3:a:cisco:firesight_system_software:5.2.0.6:*:*:*:*:*:*:*
ciscofiresight_system_software5.2.0.8cpe:2.3:a:cisco:firesight_system_software:5.2.0.8:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.0cpe:2.3:a:cisco:firesight_system_software:5.3.0:*:*:*:*:*:*:*
ciscofiresight_system_software5.3.0.1cpe:2.3:a:cisco:firesight_system_software:5.3.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	firesight_system_software	5.2.0	cpe:2.3:a:cisco:firesight_system_software:5.2.0:::::::*
cisco	firesight_system_software	5.2.0.1	cpe:2.3:a:cisco:firesight_system_software:5.2.0.1:::::::*
cisco	firesight_system_software	5.2.0.2	cpe:2.3:a:cisco:firesight_system_software:5.2.0.2:::::::*
cisco	firesight_system_software	5.2.0.3	cpe:2.3:a:cisco:firesight_system_software:5.2.0.3:::::::*
cisco	firesight_system_software	5.2.0.4	cpe:2.3:a:cisco:firesight_system_software:5.2.0.4:::::::*
cisco	firesight_system_software	5.2.0.5	cpe:2.3:a:cisco:firesight_system_software:5.2.0.5:::::::*
cisco	firesight_system_software	5.2.0.6	cpe:2.3:a:cisco:firesight_system_software:5.2.0.6:::::::*
cisco	firesight_system_software	5.2.0.8	cpe:2.3:a:cisco:firesight_system_software:5.2.0.8:::::::*
cisco	firesight_system_software	5.3.0	cpe:2.3:a:cisco:firesight_system_software:5.3.0:::::::*
cisco	firesight_system_software	5.3.0.1	cpe:2.3:a:cisco:firesight_system_software:5.3.0.1:::::::*

Rows per page:

1-10 of 281

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-firepower

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.002

Percentile

55.6%

JSON

Related for CVE-2016-1368