CVE-2016-1459

Cisco IOS 12.4 and 15.0 through 15.5 and IOS XE 3.13 through 3.17 allow remote authenticated users to cause a denial of service (device reload) via crafted attributes in a BGP message, aka Bug ID CSCuz21061.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
VendorProductVersion
ciscoios
12.4\(4\)xc7
ciscoios
12.4\(15\)t17
ciscoios
12.4\(19a\)
ciscoios
12.4\(22\)yb2
ciscoios
12.4\(24\)gc4
ciscoios
12.4\(24\)gc5
ciscoios
15.0\(1\)ex
ciscoios
15.0\(1\)m
ciscoios
15.0\(1\)m9
ciscoios
15.0\(1\)m10
ciscoios
15.0\(1\)s
ciscoios
15.0\(1\)sy
ciscoios
15.0\(2\)sg
ciscoios
15.1\(3\)t4
ciscoios
15.1\(4\)gc2
ciscoios
15.1\(4\)m10
ciscoios
15.2\(3\)t4
ciscoios
15.2\(4\)gc3
ciscoios
15.2\(4\)m10
ciscoios
15.3\(2\)t4
ciscoios
15.3\(3\)m
ciscoios
15.3\(3\)m7
ciscoios
15.4\(2\)t4
ciscoios
15.4\(3\)m5
ciscoios
15.5\(2\)t3
ciscoios
15.5\(3\)m3
ciscoios_xe
3.13.2s:s
ciscoios_xe
3.13.3s:s
ciscoios_xe
3.13.4s:s
ciscoios_xe
3.13.5s:s
ciscoios_xe
3.14.0s:s
ciscoios_xe
3.14.1s:s
ciscoios_xe
3.14.2s:s
ciscoios_xe
3.14.3s:s
ciscoios_xe
3.14.4s:s
ciscoios_xe
3.15.1cs:cs
ciscoios_xe
3.15.2s:s
ciscoios_xe
3.15.3s:s
ciscoios_xe
3.16.0cs:cs
ciscoios_xe
3.16.1as:as
ciscoios_xe
3.16.2s:s
ciscoios_xe
3.16.3s:s
ciscoios_xe
3.17.0s:s
ciscoios_xe
3.17.1s:s
ciscoios_xe
3.17.2s:s
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp
http://www.securityfocus.com/bid/91800
http://www.securitytracker.com/id/1036321
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp
http://www.securityfocus.com/bid/91800
http://www.securitytracker.com/id/1036321