Lucene search

CiscoCVE-2016-1399

HistoryMay 14, 2016 - 1:59 a.m.

CVE-2016-1399

2016-05-1401:59:01

CWE-399

cisco

web.nvd.nist.gov

cisco

ios

denial of service

packet data corruption

cve-2016-1399

industrial ethernet

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.007

Percentile

80.0%

JSON

The packet-processing microcode in Cisco IOS 15.2(2)EA, 15.2(2)EA1, 15.2(2)EA2, and 15.2(4)EA on Industrial Ethernet 4000 devices and 15.2(2)EB and 15.2(2)EB1 on Industrial Ethernet 5000 devices allows remote attackers to cause a denial of service (packet data corruption) via crafted IPv4 ICMP packets, aka Bug ID CSCuy13431.

Affected configurations

Nvd

Node

ciscoiosMatch15.2\(2\)eb

ciscoiosMatch15.2\(2\)eb1

AND

ciscoie-5000-12s12p-10gMatch-

ciscoie-5000-16s12pMatch-

Node

ciscoiosMatch15.2\(2\)ea2

ciscoiosMatch15.2\(4\)ea

ciscoiosMatch15.2\(2\)ea

ciscoiosMatch15.2\(2\)ea1

AND

ciscoie-4000-16gt4g-eMatch-

ciscoie-4000-16t4g-eMatch-

ciscoie-4000-4gc4gp4g-eMatch-

ciscoie-4000-4gs8gp4g-eMatch-

ciscoie-4000-4s8p4g-eMatch-

ciscoie-4000-4t4p4g-eMatch-

ciscoie-4000-4tc4g-eMatch-

ciscoie-4000-8gs4g-eMatch-

ciscoie-4000-8gt4g-eMatch-

ciscoie-4000-8gt8gp4g-eMatch-

ciscoie-4000-8s4g-eMatch-

ciscoie-4000-8t4g-eMatch-

VendorProductVersionCPE
ciscoios15.2(2)ebcpe:2.3:o:cisco:ios:15.2\(2\)eb:*:*:*:*:*:*:*
ciscoios15.2(2)eb1cpe:2.3:o:cisco:ios:15.2\(2\)eb1:*:*:*:*:*:*:*
ciscoie-5000-12s12p-10g-cpe:2.3:h:cisco:ie-5000-12s12p-10g:-:*:*:*:*:*:*:*
ciscoie-5000-16s12p-cpe:2.3:h:cisco:ie-5000-16s12p:-:*:*:*:*:*:*:*
ciscoios15.2(2)ea2cpe:2.3:a:cisco:ios:15.2\(2\)ea2:*:*:*:*:*:*:*
ciscoios15.2(4)eacpe:2.3:a:cisco:ios:15.2\(4\)ea:*:*:*:*:*:*:*
ciscoios15.2(2)eacpe:2.3:o:cisco:ios:15.2\(2\)ea:*:*:*:*:*:*:*
ciscoios15.2(2)ea1cpe:2.3:o:cisco:ios:15.2\(2\)ea1:*:*:*:*:*:*:*
ciscoie-4000-16gt4g-e-cpe:2.3:h:cisco:ie-4000-16gt4g-e:-:*:*:*:*:*:*:*
ciscoie-4000-16t4g-e-cpe:2.3:h:cisco:ie-4000-16t4g-e:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.2(2)eb	cpe:2.3:o:cisco:ios:15.2\(2\)eb:::::::*
cisco	ios	15.2(2)eb1	cpe:2.3:o:cisco:ios:15.2\(2\)eb1:::::::*
cisco	ie-5000-12s12p-10g	-	cpe:2.3:h:cisco:ie-5000-12s12p-10g:-:::::::*
cisco	ie-5000-16s12p	-	cpe:2.3:h:cisco:ie-5000-16s12p:-:::::::*
cisco	ios	15.2(2)ea2	cpe:2.3:a:cisco:ios:15.2\(2\)ea2:::::::*
cisco	ios	15.2(4)ea	cpe:2.3:a:cisco:ios:15.2\(4\)ea:::::::*
cisco	ios	15.2(2)ea	cpe:2.3:o:cisco:ios:15.2\(2\)ea:::::::*
cisco	ios	15.2(2)ea1	cpe:2.3:o:cisco:ios:15.2\(2\)ea1:::::::*
cisco	ie-4000-16gt4g-e	-	cpe:2.3:h:cisco:ie-4000-16gt4g-e:-:::::::*
cisco	ie-4000-16t4g-e	-	cpe:2.3:h:cisco:ie-4000-16t4g-e:-:::::::*

Rows per page:

1-10 of 201

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160513-ies

www.securityfocus.com/bid/90665

www.securitytracker.com/id/1035898

ics-cert.us-cert.gov/advisories/ICSA-16-175-01

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.007

Percentile

80.0%

JSON

Related for CVE-2016-1399