CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-9201

A vulnerability in the Zone-Based Firewall feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to pass traffic that should otherwise have been dropped based on the configuration. More Information: CSCuz21015. Known Affected Releases: 15.3(3)M3. Known Fixed Releases: 15.6(2)T0.1 15.6(2.0.1a)T0 15.6(2.19)T 15.6(3)M.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/94811
http://www.securitytracker.com/id/1037419
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ios-zbf
http://www.securityfocus.com/bid/94811
http://www.securitytracker.com/id/1037419
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ios-zbf

Products affected by CVE-2016-9201

Cisco » Ios » Version: 15.3(3)m3

cpe:2.3:o:cisco:ios:15.3(3)m3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-9201

Products

Pricing

Contact Us