Vulnerability Database

296,147

Total vulnerabilities in the database

CVE-2016-6355

Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers to cause a denial of service (control-plane protocol outage) via crafted fragmented packets, aka Bug ID CSCux26791.

  • Published: Aug 23, 2016
  • Updated: Apr 13, 2023
  • CVE: CVE-2016-6355
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

Software From Fixed in
cisco / ios_xr 5.1.1.k9sec 5.1.1.k9sec.x
cisco / ios_xr 5.3.1 5.3.1.x
cisco / ios_xr 5.2.5 5.2.5.x
cisco / ios_xr 5.2.4 5.2.4.x
cisco / ios_xr 5.1.1 5.1.1.x
cisco / ios_xr 5.1.0 5.1.0.x
cisco / ios_xr 5.1.3 5.1.3.x
cisco / ios_xr 5.3.2 5.3.2.x
cisco / ios_xr 5.2.1 5.2.1.x
cisco / ios_xr 5.3.0 5.3.0.x
cisco / ios_xr 5.2.0 5.2.0.x
cisco / ios_xr 5.2.3 5.2.3.x
cisco / ios_xr 5.2.2 5.2.2.x
cisco / ios_xr 5.1.2 5.1.2.x