CVE-2016-1378

Published Apr 14, 2016

Last updated 8 years ago

CVSS medium 5.3

Overview

Description: Cisco IOS before 15.2(2)E1 on Catalyst switches allows remote attackers to obtain potentially sensitive software-version information via a request to the Network Mobility Services Protocol (NMSP) port, aka Bug ID CSCum62591.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.0

Type: Primary
Base score: 5.3
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sg:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B8A89C06-8384-4B23-8D3A-293C9035FC73"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sg1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "94836415-1A1D-4DC2-BDAF-BE5B06EA5C18"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sg2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00B7F513-E991-47A4-A96B-2EB90B15D197"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AD483E0-66F9-4DD1-85FA-C125C9617E10"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "35C1075B-11F3-453C-957D-834C5D6D8CB1"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "115E901C-94B4-4EC7-AA85-03A20CFA90DF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C97051EE-8C42-4546-8EDC-FAD60B3EE1EB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB435D9A-FA6C-4CBD-8647-3A61B3DAB338"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14181F4B-9A5C-40B4-BD15-FED694E9AE8E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(1\\)sy6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B62E402E-5D8B-4261-906C-C5668B4A12BB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4E5F22B-2CD3-4A14-AB2B-E039CF001140"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15102BA5-E96F-468C-8F8E-4F8F9E947533"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F1F481FC-D16B-461C-BCBB-D58B58D1647D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42D47483-F300-4224-86B2-6FBEFA35EE63"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC9E74C5-4BF5-4F29-938F-3E71784F08AB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2963A4BD-1414-40CA-A949-9CE61B3C61C8"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE0C7B38-F1D2-4D6F-A986-BDE58F6B7E40"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2A6C5B60-9524-4A5A-A8CA-3C18730E18F4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07DCF559-9324-4CE1-A986-EF4A174DCEFC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38CC9728-4E4A-4536-BC81-031AFE1A74E9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9DECC49-1DF8-4925-9232-04DA748428B2"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B736A1E0-89F4-418C-BC12-7E6A7AC7891F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2BDC0B5A-E59C-454E-AA0E-6EB9C8888480"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy4a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2363876E-0E3B-44BA-8157-FA96554302B9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2D3131A-74F7-4465-826E-5F6C90240C4D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E0D1E17-9A5C-4B74-B780-F31364FD9F06"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F70ADF53-D937-4CB1-8D17-8B4DB9A5458C"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sy8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8B0F30A4-C088-4ECC-ABE0-33D4A7BC8D1E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.0

CVSS 2.0

Weaknesses

Social media

Configurations

References