CVE-2016-1344

The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.9 MEDIUM
NETWORK
HIGH
NONE
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
VendorProductVersion
ciscoios_xe
3.3s_3.3.0s:s_3.3
ciscoios_xe
3.3s_3.3.1s:s_3.3
ciscoios_xe
3.3s_3.3.2s:s_3.3
ciscoios_xe
3.3sg_3.3.0sg:sg_3.3
ciscoios_xe
3.3sg_3.3.1sg:sg_3.3
ciscoios_xe
3.3sg_3.3.2sg:sg_3.3
ciscoios_xe
3.3xo_3.3.0xo:xo_3.3
ciscoios_xe
3.3xo_3.3.1xo:xo_3.3
ciscoios_xe
3.3xo_3.3.2xo:xo_3.3
ciscoios_xe
3.4s_3.4.0as:s_3.4
ciscoios_xe
3.4s_3.4.0s:s_3.4
ciscoios_xe
3.4s_3.4.1s:s_3.4
ciscoios_xe
3.4s_3.4.2s:s_3.4
ciscoios_xe
3.4s_3.4.3s:s_3.4
ciscoios_xe
3.4s_3.4.4s:s_3.4
ciscoios_xe
3.4s_3.4.5s:s_3.4
ciscoios_xe
3.4s_3.4.6s:s_3.4
ciscoios_xe
3.4sg_3.4.0sg:sg_3.4
ciscoios_xe
3.4sg_3.4.1sg:sg_3.4
ciscoios_xe
3.4sg_3.4.2sg:sg_3.4
ciscoios_xe
3.4sg_3.4.3sg:sg_3.4
ciscoios_xe
3.4sg_3.4.4sg:sg_3.4
ciscoios_xe
3.4sg_3.4.5sg:sg_3.4
ciscoios_xe
3.4sg_3.4.6sg:sg_3.4
ciscoios_xe
3.4sg_3.4.7sg:sg_3.4
ciscoios_xe
3.5e_3.5.0e:e_3.5
ciscoios_xe
3.5e_3.5.1e:e_3.5
ciscoios_xe
3.5e_3.5.2e:e_3.5
ciscoios_xe
3.5e_3.5.3e:e_3.5
ciscoios_xe
3.5s_3.5.0s:s_3.5
ciscoios_xe
3.5s_3.5.1s:s_3.5
ciscoios_xe
3.5s_3.5.2s:s_3.5
ciscoios_xe
3.6e_3.6.0e:e_3.6
ciscoios_xe
3.6e_3.6.1e:e_3.6
ciscoios_xe
3.6e_3.6.2ae:e_3.6
ciscoios_xe
3.6e_3.6.2e:e_3.6
ciscoios_xe
3.6e_3.6.3e:e_3.6
ciscoios_xe
3.6s_3.6.0s:s_3.6
ciscoios_xe
3.6s_3.6.1s:s_3.6
ciscoios_xe
3.6s_3.6.2s:s_3.6
ciscoios_xe
3.7e_3.7.0e:e_3.7
ciscoios_xe
3.7e_3.7.1e:e_3.7
ciscoios_xe
3.7e_3.7.2e:e_3.7
ciscoios_xe
3.7e_3.7.3e:e_3.7
ciscoios_xe
3.7s_3.7.0s:s_3.7
ciscoios_xe
3.7s_3.7.1s:s_3.7
ciscoios_xe
3.7s_3.7.2s:s_3.7
ciscoios_xe
3.7s_3.7.2ts:s_3.7
ciscoios_xe
3.7s_3.7.3s:s_3.7
ciscoios_xe
3.7s_3.7.4as:s_3.7
ciscoios_xe
3.7s_3.7.4s:s_3.7
ciscoios_xe
3.7s_3.7.5s:s_3.7
ciscoios_xe
3.7s_3.7.6s:s_3.7
ciscoios_xe
3.7s_3.7.7s:s_3.7
ciscoios_xe
3.8e_3.8.0e:e_3.8
ciscoios_xe
3.8e_3.8.1e:e_3.8
ciscoios_xe
3.8s_3.8.0s:s_3.8
ciscoios_xe
3.8s_3.8.1s:s_3.8
ciscoios_xe
3.8s_3.8.2s:s_3.8
ciscoios_xe
3.9s_3.9.0as:s_3.9
ciscoios_xe
3.9s_3.9.0s:s_3.9
ciscoios_xe
3.9s_3.9.1as:s_3.9
ciscoios_xe
3.9s_3.9.1s:s_3.9
ciscoios_xe
3.9s_3.9.2s:s_3.9
ciscoios_xe
3.10s_3.10.0s:s_3.10
ciscoios_xe
3.10s_3.10.1s:s_3.10
ciscoios_xe
3.10s_3.10.1xbs:s_3.10
ciscoios_xe
3.10s_3.10.2s:s_3.10
ciscoios_xe
3.10s_3.10.3s:s_3.10
ciscoios_xe
3.10s_3.10.4s:s_3.10
ciscoios_xe
3.10s_3.10.5s:s_3.10
ciscoios_xe
3.10s_3.10.6s:s_3.10
ciscoios_xe
3.11s_3.11.0s:s_3.11
ciscoios_xe
3.11s_3.11.1s:s_3.11
ciscoios_xe
3.11s_3.11.2s:s_3.11
ciscoios_xe
3.11s_3.11.3s:s_3.11
ciscoios_xe
3.11s_3.11.4s:s_3.11
ciscoios_xe
3.12s_3.12.0s:s_3.12
ciscoios_xe
3.12s_3.12.1s:s_3.12
ciscoios_xe
3.12s_3.12.2s:s_3.12
ciscoios_xe
3.12s_3.12.3s:s_3.12
ciscoios_xe
3.12s_3.12.4s:s_3.12
ciscoios_xe
3.13s_3.13.0as:s_3.13
ciscoios_xe
3.13s_3.13.0s:s_3.13
ciscoios_xe
3.13s_3.13.1s:s_3.13
ciscoios_xe
3.13s_3.13.2as:s_3.13
ciscoios_xe
3.13s_3.13.2s:s_3.13
ciscoios_xe
3.13s_3.13.3s:s_3.13
ciscoios_xe
3.13s_3.13.4s:s_3.13
ciscoios_xe
3.14s_3.14.0s:s_3.14
ciscoios_xe
3.14s_3.14.1s:s_3.14
ciscoios_xe
3.14s_3.14.2s:s_3.14
ciscoios_xe
3.14s_3.14.3s:s_3.14
ciscoios_xe
3.15s_3.15.0s:s_3.15
ciscoios_xe
3.15s_3.15.1cs:s_3.15
ciscoios_xe
3.15s_3.15.1s:s_3.15
ciscoios_xe
3.15s_3.15.2s:s_3.15
ciscoios_xe
3.16s_3.16.0cs:s_3.16
ciscoios_xe
3.16s_3.16.0s:s_3.16
ciscoios_xe
3.16s_3.16.1as:s_3.16
ciscoios_xe
3.16s_3.16.1s:s_3.16
ciscoios_xe
3.17s_3.17.0s:s_3.17
netgearjr6150_firmware
𝑥
< 2017-01-06
zyxelgs1900-10hp_firmware
𝑥
< 2.50\(aazi.0\)c0
zzinckeymouse_firmware
3.08
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-ios-ikev2
http://www.securityfocus.com/bid/85311
http://www.securitytracker.com/id/1035382
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-ios-ikev2
http://www.securityfocus.com/bid/85311
http://www.securitytracker.com/id/1035382