CVE-2016-1465

Cisco Nexus 1000v Application Virtual Switch (AVS) devices before 5.2(1)SV3(1.5i) allow remote attackers to cause a denial of service (ESXi hypervisor crash and purple screen) via a crafted Cisco Discovery Protocol packet that triggers an out-of-bounds memory access, aka Bug ID CSCuw57985.

Published: Jul 28, 2016
Updated: Apr 13, 2023
CVE: CVE-2016-1465
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 6.1
AV:A/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-399

Affected Software
References

Software	From	Fixed in
cisco / nx-os	4.0(4)sv1(1)	4.0(4)sv1(1).x
cisco / nx-os	4.0(4)sv1(2)	4.0(4)sv1(2).x
cisco / nx-os	4.0(4)sv1(3)	4.0(4)sv1(3).x
cisco / nx-os	4.0(4)sv1(3a)	4.0(4)sv1(3a).x
cisco / nx-os	4.0(4)sv1(3b)	4.0(4)sv1(3b).x
cisco / nx-os	4.0(4)sv1(3c)	4.0(4)sv1(3c).x
cisco / nx-os	4.0(4)sv1(3d)	4.0(4)sv1(3d).x
cisco / nx-os	4.2(1)sv1(4)	4.2(1)sv1(4).x
cisco / nx-os	4.2(1)sv1(4a)	4.2(1)sv1(4a).x
cisco / nx-os	4.2(1)sv1(4b)	4.2(1)sv1(4b).x
cisco / nx-os	4.2(1)sv1(5.1)	4.2(1)sv1(5.1).x
cisco / nx-os	4.2(1)sv1(5.1a)	4.2(1)sv1(5.1a).x
cisco / nx-os	4.2(1)sv1(5.2)	4.2(1)sv1(5.2).x
cisco / nx-os	4.2(1)sv1(5.2b)	4.2(1)sv1(5.2b).x
cisco / nx-os	4.2(1)sv2(1.1)	4.2(1)sv2(1.1).x
cisco / nx-os	4.2(1)sv2(1.1a)	4.2(1)sv2(1.1a).x
cisco / nx-os	4.2(1)sv2(2.1)	4.2(1)sv2(2.1).x
cisco / nx-os	4.2(1)sv2(2.1a)	4.2(1)sv2(2.1a).x
cisco / nx-os	5.2(1)sv3(1.1)	5.2(1)sv3(1.1).x
cisco / nx-os	5.2(1)sv3(1.3)	5.2(1)sv3(1.3).x
cisco / nx-os	5.2(1)sv3(1.4)	5.2(1)sv3(1.4).x

Vulnerability Database

289,599

CVE-2016-1465