CVE-2016-1453

Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long parameters in a packet header, aka Bug ID CSCuy95701.

Published: Oct 6, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-1453
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cisco / nx-os	6.2(2a)	6.2(2a).x
cisco / nx-os	6.1(3)	6.1(3).x
cisco / nx-os	5.1(6)	5.1(6).x
cisco / nx-os	5.2(1)	5.2(1).x
cisco / nx-os	6.2(12)	6.2(12).x
cisco / nx-os	5.1(4)	5.1(4).x
cisco / nx-os	6.2(6b)	6.2(6b).x
cisco / nx-os	4.1.(2)	4.1.(2).x
cisco / nx-os	5.1(5)	5.1(5).x
cisco / nx-os	6.0(3)	6.0(3).x
cisco / nx-os	4.2(8)	4.2(8).x
cisco / nx-os	6.0(2)	6.0(2).x
cisco / nx-os	4.2(3)	4.2(3).x
cisco / nx-os	4.1.(3)	4.1.(3).x
cisco / nx-os	5.1(3)	5.1(3).x
cisco / nx-os	6.1(4)	6.1(4).x
cisco / nx-os	5.2(3a)	5.2(3a).x
cisco / nx-os	6.2(8b)	6.2(8b).x
cisco / nx-os	5.2(7)	5.2(7).x
cisco / nx-os	base	base.x
cisco / nx-os	6.2(10)	6.2(10).x
cisco / nx-os	5.2(9)	5.2(9).x
cisco / nx-os	5.0(5)	5.0(5).x
cisco / nx-os	4.2(4)	4.2(4).x
cisco / nx-os	5.2(4)	5.2(4).x
cisco / nx-os	6.1(4a)	6.1(4a).x
cisco / nx-os	6.2(8a)	6.2(8a).x
cisco / nx-os	4.2.(2a)	4.2.(2a).x
cisco / nx-os	4.1.(5)	4.1.(5).x
cisco / nx-os	7.2(0)n1(0.1)	7.2(0)n1(0.1).x
cisco / nx-os	5.1(1)	5.1(1).x
cisco / nx-os	5.0(2a)	5.0(2a).x
cisco / nx-os	5.0(3)	5.0(3).x
cisco / nx-os	5.1(1a)	5.1(1a).x
cisco / nx-os	4.1.(4)	4.1.(4).x
cisco / nx-os	6.2(2)	6.2(2).x
cisco / nx-os	6.0(1)	6.0(1).x
cisco / nx-os	6.0(4)	6.0(4).x
cisco / nx-os	6.1(5)	6.1(5).x
cisco / nx-os	6.2(14)s1	6.2(14)s1.x
cisco / nx-os	6.1(1)	6.1(1).x
cisco / nx-os	6.2(6)	6.2(6).x
cisco / nx-os	6.1(2)	6.1(2).x
cisco / nx-os	4.2(6)	4.2(6).x
cisco / nx-os	6.2(8)	6.2(8).x
cisco / nx-os	5.2(5)	5.2(5).x

Vulnerability Database

289,599

CVE-2016-1453