CVE-2016-1347

The Wide Area Application Services (WAAS) Express implementation in Cisco IOS 15.1 through 15.5 allows remote attackers to cause a denial of service (device reload) via a crafted TCP segment, aka Bug ID CSCuq59708.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
VendorProductVersion
ciscoios
15.1\(4\)gc2
ciscoios
15.1\(4\)m6
ciscoios
15.1\(4\)xb4
ciscoios
15.1\(4\)xb5
ciscoios
15.1\(4\)xb5a
ciscoios
15.1\(4\)xb6
ciscoios
15.1\(4\)xb7
ciscoios
15.1\(4\)xb8
ciscoios
15.1\(4\)xb8a
ciscoios
15.2\(4\)jaz1
ciscoios
15.2\(4\)m7
ciscoios
15.3\(1\)t2
ciscoios
15.3\(3\)jaa1
ciscoios
15.3\(3\)m
ciscoios
15.3\(3\)m3
ciscoios
15.3\(3\)m4
ciscoios
15.3\(3\)m6
ciscoios
15.4\(1\)t
ciscoios
15.4\(1\)t1
ciscoios
15.4\(1\)t2
ciscoios
15.4\(2\)t
ciscoios
15.4\(2\)t1
ciscoios
15.4\(2\)t2
ciscoios
15.4\(2\)t3
ciscoios
15.4\(2\)t4
ciscoios
15.4\(3\)m
ciscoios
15.4\(3\)m1
ciscoios
15.4\(3\)m2
ciscoios
15.4\(3\)m3
ciscoios
15.5\(2\)t1
ciscoios
15.5\(2\)t2
ciscoios
15.5\(2\)t3
ciscoios
15.5\(3\)m
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-l4f
http://www.securitytracker.com/id/1035380
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-l4f
http://www.securitytracker.com/id/1035380