Vulnerability Details CVE-2016-1426
Cisco IOS XR 5.x through 5.2.5 on NCS 6000 devices allows remote attackers to cause a denial of service (timer consumption and Route Processor reload) via crafted SSH traffic, aka Bug ID CSCux76819.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 72.0%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160713-ncs6k
- http://www.securityfocus.com/bid/91748
- http://www.securitytracker.com/id/1036295
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160713-ncs6k
- http://www.securityfocus.com/bid/91748
- http://www.securitytracker.com/id/1036295
Products affected by CVE-2016-1426
-
cpe:2.3:h:cisco:network_convergence_system_6000:-
-
cpe:2.3:o:cisco:ios_xr:5.0.0
-
cpe:2.3:o:cisco:ios_xr:5.0.1
-
cpe:2.3:o:cisco:ios_xr:5.0_base
-
cpe:2.3:o:cisco:ios_xr:5.1.0
-
cpe:2.3:o:cisco:ios_xr:5.1.1
-
cpe:2.3:o:cisco:ios_xr:5.1.1.k9sec
-
cpe:2.3:o:cisco:ios_xr:5.1.2
-
cpe:2.3:o:cisco:ios_xr:5.1.3
-
cpe:2.3:o:cisco:ios_xr:5.2.0
-
cpe:2.3:o:cisco:ios_xr:5.2.1
-
cpe:2.3:o:cisco:ios_xr:5.2.2
-
cpe:2.3:o:cisco:ios_xr:5.2.3
-
cpe:2.3:o:cisco:ios_xr:5.2.4
-
cpe:2.3:o:cisco:ios_xr:5.2.5