CVE-2016-1347

Published Mar 24, 2016

Last updated 3 years ago

CVSS high 7.5

Overview

Description: The Wide Area Application Services (WAAS) Express implementation in Cisco IOS 15.1 through 15.5 allows remote attackers to cause a denial of service (device reload) via a crafted TCP segment, aka Bug ID CSCuq59708.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)gc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B082C941-CE02-440F-8DD7-87873504B964"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)m6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B770E747-517E-42FE-9197-8E654F294B3A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1D6836A1-5F15-44E2-AA5E-4CD0DDDB9692"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B59E042B-9A4B-4959-9B6A-FBDF431EB3E7"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb5a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1FBB1846-D09A-4F66-AD7F-45A2236D8839"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75A272B8-DC6C-4D40-9C21-FFBC6BDFE836"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "064E2B27-4067-49EF-A95A-8BC49E05662E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4035C938-2BAB-43C1-8302-8F22D4D3D0DF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(4\\)xb8a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CC3BEF0-8E19-4464-92B5-2C6521AE126C"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)jaz1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D4358B9-F3DB-46AC-A3A8-114E25F676DA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.2\\(4\\)m7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96FDDD94-40C9-47F0-9D43-0C0267F439C0"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(1\\)t2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4E6ED45F-4479-445D-8970-F90413C51B7A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jaa1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EAE1AD0D-C3E9-488C-89CB-F2342CF6D5A0"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E0A47B7-5AD3-4B4C-A2FD-4EE0381B3FCE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)m3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B828AA0-E0B2-4897-AF28-FC80B9FF81BA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)m4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9279A96A-43B2-4FD4-97F0-DA331EACF918"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)m6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7855CC38-5E3E-486D-9322-7BF0DC1FF623"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(1\\)t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0B856BB-0FFE-4A92-9CE7-D71B6C611CD3"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(1\\)t1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1EE552E-226C-46DE-9861-CB148AD8FB44"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(1\\)t2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CAF02C8E-9BB2-4DC2-8BF1-932835191F09"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(2\\)t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74E1226B-46CF-4C82-911A-86C818A75DFA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(2\\)t1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "100DA24F-464E-4273-83DF-6428D0ED6641"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(2\\)t2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "063C0C47-25EB-4AA4-9332-8E43CD60FF39"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(2\\)t3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6004A94-FF96-4A34-B3CC-D4B4E555CFB4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(2\\)t4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "02866AED-A1B4-4D89-A11F-27089EF935BE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(3\\)m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1C85BAAF-819B-40E7-9099-04AA8D9AB114"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(3\\)m1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED684DB4-527A-4268-B197-4719B0178429"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(3\\)m2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "88F41406-0F55-4D74-A4F6-4ABD5A803907"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(3\\)m3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7082C083-7517-4CD4-BF95-CC7AF08D4053"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(2\\)t1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F5D3761-16C8-413A-89AD-C076B9B92FF1"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(2\\)t2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F690BEC9-FAE9-4C02-9993-34BF14FA99EA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(2\\)t3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BEA314F-8C89-4D6C-A6B6-3E9247A35B7E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "716EC9AA-0569-4FA7-A244-1A14FA15C5AD"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References