CVE-2016-6457

Published Nov 19, 2016

Last updated 3 years ago

CVSS medium 6.5

Overview

Description: A vulnerability in the Cisco Nexus 9000 Series Platform Leaf Switches for Application Centric Infrastructure (ACI) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability affects Cisco Nexus 9000 Series Leaf Switches (TOR) - ACI Mode and Cisco Application Policy Infrastructure Controller (APIC). More Information: CSCuy93241. Known Affected Releases: 11.2(2x) 11.2(3x) 11.3(1x) 11.3(2x) 12.0(1x). Known Fixed Releases: 11.2(2i) 11.2(2j) 11.2(3f) 11.2(3g) 11.2(3h) 11.2(3l) 11.3(0.236) 11.3(1j) 11.3(2i) 11.3(2j) 12.0(1r).
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.5
Impact score: 3.6
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 6.1
Impact score: 6.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "633D2528-7FC4-448C-AEF4-5849B172CE11"
          },
          {
            "criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.2\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2585A246-7C8F-4755-9DB9-E9A668901B7F"
          },
          {
            "criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "789A655E-4670-421D-98EA-B80F4EF35191"
          },
          {
            "criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:1.3\\(2\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CCB2662B-7AD7-486D-B492-3ED74723A88D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:2.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05098742-7099-424F-8490-300508F0459F"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(2g\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36A00C1F-7270-4E2F-8420-8567336AD1C3"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(2h\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22EE58D9-D1BF-41BD-B331-A3472D38B1D9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(2i\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58B28302-6700-4B2C-9531-6BECA5113D70"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(3c\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E34C017B-E9C3-48B8-AB7E-0A8C6CD8788B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(3e\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ED0CF9B2-356D-45C5-BFCD-94155E1A2F14"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.2\\(3h\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2478A831-330D-4526-8A2C-DC8C0F6973ED"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.3\\(1i\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1569E0F4-33D1-408D-88DC-26822447F325"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.3\\(2f\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA86F8E0-58FB-4CA5-9541-E9D55BED533D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.3\\(2h\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F031ABAD-3D20-4374-ABBE-24D5C01BE910"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:11.3\\(2i\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F227E127-08EE-4A86-956C-BBBDB49925A5"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:12.0\\(1m\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BEE5B22-F9D3-4EAA-A552-7F0271080632"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:12.0\\(1n\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74DB471F-43AF-4E94-99B0-7D38CB3F5943"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:12.0\\(1o\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9217FBFE-2708-440A-90F9-0562C159DE16"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:12.0\\(1p\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5BA5F46C-3172-4509-856F-703E0B517E7D"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:12.0\\(1q\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E07DC9A1-E4BA-474C-96C2-0B73704628AB"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:nexus_92160yc-x:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4283E433-7F8C-4410-B565-471415445811"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_92304qc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D5B2E4C1-2627-4B9D-8E92-4B483F647651"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9236c:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "11411BFD-3F4D-4309-AB35-A3629A360FB0"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9272q:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E663DE91-C86D-48DC-B771-FA72A8DF7A7C"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_93108tc-ex:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A90184B3-C82F-4CE5-B2AD-97D5E4690871"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "07DE6F63-2C7D-415B-8C34-01EC05C062F3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F423E45D-A6DD-4305-9C6A-EAB26293E53A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_93180yc-ex:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F70D81F1-8B12-4474-9060-B4934D8A3873"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "113772B6-E9D2-4094-9468-3F4E1A87D07D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "785FD17C-F32E-4042-9DDE-A89B3AAE0334"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4364ADB9-8162-451D-806A-B98924E6B2CF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "49E0371B-FDE2-473C-AA59-47E1269D050F"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1BC5293E-F2B4-46DC-85DA-167EA323FCFD"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EA022E77-6557-4A33-9A3A-D028E2DB669A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9504:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "768BE390-5ED5-48A7-9E80-C4DE8BA979B1"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9508:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DDC2F709-AFBE-48EA-A3A2-DA1134534FB6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_9516:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7E02DC82-0D26-436F-BA64-73C958932B0A"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References