CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-1428

Double free vulnerability in Cisco IOS XE 3.15S, 3.16S, and 3.17S allows remote authenticated users to cause a denial of service (device restart) via a sequence of crafted SNMP read requests, aka Bug ID CSCux13174.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 62.9%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.8

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160620-iosxe
http://www.securitytracker.com/id/1036140
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160620-iosxe
http://www.securitytracker.com/id/1036140

Products affected by CVE-2016-1428

Cisco » Ios Xe » Version: 3.15.0s

cpe:2.3:o:cisco:ios_xe:3.15.0s
Cisco » Ios Xe » Version: 3.16.0s

cpe:2.3:o:cisco:ios_xe:3.16.0s
Cisco » Ios Xe » Version: 3.17.0s

cpe:2.3:o:cisco:ios_xe:3.17.0s

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-1428

Products

Pricing

Contact Us