- Description
- A vulnerability in the Zone-Based Firewall code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a device to reload. The vulnerability is due to the way fragmented packets are handled in the firewall code. An attacker could exploit this vulnerability by sending fragmented IP Version 4 or IP Version 6 packets through an affected device. An exploit could allow the attacker to cause the device to crash, resulting in a denial of service (DoS) condition. The following releases of Cisco IOS XE Software are vulnerable: Everest-16.4.1, Everest-16.4.2, Everest-16.5.1, Everest-16.5.1b, Everest-16.6.1, Everest-16.6.1a. Cisco Bug IDs: CSCvf60296.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
CVSS 3.1
- Type
- Primary
- Base score
- 8.6
- Impact score
- 4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
- ykramarz@cisco.com
- CWE-19
- nvd@nist.gov
- NVD-CWE-noinfo
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "77E8AF15-AB46-4EAB-8872-8C55E8601599"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "957318BE-55D4-4585-AA52-C813301D01C3"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE7B2557-821D-4E05-B5C3-67192573D97D"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.5.1b:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "187F699A-AF2F-42B0-B855-27413140C384"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.6.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F821EBD7-91E2-4460-BFAF-18482CF6CB8C"
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.6.1a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6D4BCDAC-2D1D-4199-A9A4-B169D183A5B3"
}
],
"operator": "OR"
}
]
}
]