CVE-2016-6386

Cisco IOS XE 3.1 through 3.17 and 16.1 on 64-bit platforms allows remote attackers to cause a denial of service (data-structure corruption and device reload) via fragmented IPv4 packets, aka Bug ID CSCux66005.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
ciscoios_xe
3.1.0s:s
ciscoios_xe
3.1.0sg:sg
ciscoios_xe
3.1.1s:s
ciscoios_xe
3.1.1sg:sg
ciscoios_xe
3.1.2s:s
ciscoios_xe
3.1.3as:as
ciscoios_xe
3.1.4as:as
ciscoios_xe
3.1.4s:s
ciscoios_xe
3.2.0se:se
ciscoios_xe
3.2.1s:s
ciscoios_xe
3.2.1se:se
ciscoios_xe
3.2.2s:s
ciscoios_xe
3.2.2se:se
ciscoios_xe
3.2.3se:se
ciscoios_xe
3.3.0s:s
ciscoios_xe
3.3.0se:se
ciscoios_xe
3.3.0sq:sq
ciscoios_xe
3.3.1s:s
ciscoios_xe
3.3.1se:se
ciscoios_xe
3.3.1sq:sq
ciscoios_xe
3.3.2s:s
ciscoios_xe
3.3.2se:se
ciscoios_xe
3.3.3se:se
ciscoios_xe
3.3.4se:se
ciscoios_xe
3.3.5se:se
ciscoios_xe
3.4.0as:as
ciscoios_xe
3.4.0s:s
ciscoios_xe
3.4.0sq:sq
ciscoios_xe
3.4.1s:s
ciscoios_xe
3.4.1sq:sq
ciscoios_xe
3.4.2s:s
ciscoios_xe
3.4.3s:s
ciscoios_xe
3.4.4s:s
ciscoios_xe
3.4.5s:s
ciscoios_xe
3.4.6s:s
ciscoios_xe
3.5.0e:e
ciscoios_xe
3.5.0s:s
ciscoios_xe
3.5.0sq:sq
ciscoios_xe
3.5.1e:e
ciscoios_xe
3.5.1s:s
ciscoios_xe
3.5.1sq:sq
ciscoios_xe
3.5.2e:e
ciscoios_xe
3.5.2s:s
ciscoios_xe
3.5.2sq:sq
ciscoios_xe
3.5.3e:e
ciscoios_xe
3.5.3sq:sq
ciscoios_xe
3.6.0e:e
ciscoios_xe
3.6.0s:s
ciscoios_xe
3.6.1e:e
ciscoios_xe
3.6.1s:s
ciscoios_xe
3.6.2ae:ae
ciscoios_xe
3.6.2e:e
ciscoios_xe
3.6.2s:s
ciscoios_xe
3.6.3e:e
ciscoios_xe
3.6.4e:e
ciscoios_xe
3.7.0s:s
ciscoios_xe
3.7.1e:e
ciscoios_xe
3.7.1s:s
ciscoios_xe
3.7.2e:e
ciscoios_xe
3.7.2s:s
ciscoios_xe
3.7.2ts:ts
ciscoios_xe
3.7.3e:e
ciscoios_xe
3.7.3s:s
ciscoios_xe
3.7.4as:as
ciscoios_xe
3.7.4s:s
ciscoios_xe
3.7.5s:s
ciscoios_xe
3.7.6s:s
ciscoios_xe
3.8.0e:e
ciscoios_xe
3.8.0ex:ex
ciscoios_xe
3.8.0s:s
ciscoios_xe
3.8.1e:e
ciscoios_xe
3.8.1s:s
ciscoios_xe
3.8.2s:s
ciscoios_xe
3.9.0as:as
ciscoios_xe
3.9.0s:s
ciscoios_xe
3.9.1as:as
ciscoios_xe
3.9.1s:s
ciscoios_xe
3.9.2s:s
ciscoios_xe
3.10.0s:s
ciscoios_xe
3.10.1s:s
ciscoios_xe
3.10.1xbs:xbs
ciscoios_xe
3.10.2s:s
ciscoios_xe
3.10.3s:s
ciscoios_xe
3.10.4s:s
ciscoios_xe
3.10.5s:s
ciscoios_xe
3.10.6s:s
ciscoios_xe
3.10.7s:s
ciscoios_xe
3.11.0s:s
ciscoios_xe
3.11.1s:s
ciscoios_xe
3.11.2s:s
ciscoios_xe
3.11.3s:s
ciscoios_xe
3.11.4s:s
ciscoios_xe
3.12.0as:as
ciscoios_xe
3.12.0s:s
ciscoios_xe
3.12.1s:s
ciscoios_xe
3.12.2s:s
ciscoios_xe
3.12.3s:s
ciscoios_xe
3.12.4s:s
ciscoios_xe
3.13.0as:as
ciscoios_xe
3.13.0s:s
ciscoios_xe
3.13.1s:s
ciscoios_xe
3.13.2as:as
ciscoios_xe
3.13.2s:s
ciscoios_xe
3.13.3s:s
ciscoios_xe
3.13.4s:s
ciscoios_xe
3.14.0s:s
ciscoios_xe
3.14.1s:s
ciscoios_xe
3.14.2s:s
ciscoios_xe
3.14.3s:s
ciscoios_xe
3.15.0s:s
ciscoios_xe
3.15.1cs:cs
ciscoios_xe
3.15.1s:s
ciscoios_xe
3.15.2s:s
ciscoios_xe
3.16.0cs:cs
ciscoios_xe
3.16.0s:s
ciscoios_xe
3.16.1as:as
ciscoios_xe
3.16.1s:s
ciscoios_xe
3.17.0s:s
ciscoios_xe_16.1
16.1.2
ciscoios_xe_3.2ja
3.2.0ja:ja
ciscoios_xe_3.3sg
3.3.0sg:sg
ciscoios_xe_3.3sg
3.3.1sg:sg
ciscoios_xe_3.3sg
3.3.2sg:sg
ciscoios_xe_3.3xo
3.3.0xo:xo
ciscoios_xe_3.3xo
3.3.1xo:xo
ciscoios_xe_3.3xo
3.3.2xo:xo
ciscoios_xe_3.4sg
3.4.0sg:sg
ciscoios_xe_3.4sg
3.4.1sg:sg
ciscoios_xe_3.4sg
3.4.2sg:sg
ciscoios_xe_3.4sg
3.4.3sg:sg
ciscoios_xe_3.4sg
3.4.4sg:sg
ciscoios_xe_3.4sg
3.4.5sg:sg
ciscoios_xe_3.4sg
3.4.6sg:sg
ciscoios_xe_3.4sg
3.4.7sg:sg
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-frag
http://www.securityfocus.com/bid/93202
http://www.securitytracker.com/id/1036914
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-frag
http://www.securityfocus.com/bid/93202
http://www.securitytracker.com/id/1036914