Vulnerability Database

346,508

Total vulnerabilities in the database

CVE-2016-6385 — cisco / ios

Resource Management Errors

Memory leak in the Smart Install client implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.2 through 3.8 allows remote attackers to cause a denial of service (memory consumption) via crafted image-list parameters, aka Bug ID CSCuy82367.

  • Published: Oct 5, 2016
  • Updated: Nov 9, 2025
  • CVE: CVE-2016-6385
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.8
  • AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

Software From Fixed in
cisco / ios 15.0(2)ex4 15.0(2)ex4.x
cisco / ios 12.2(35)se5 12.2(35)se5.x
cisco / ios 15.0(1)ey 15.0(1)ey.x
cisco / ios 12.2(35)ex 12.2(35)ex.x
cisco / ios 15.0(2)ed1 15.0(2)ed1.x
cisco / ios 12.2(55)se2 12.2(55)se2.x
cisco / ios 12.2(60)ez7 12.2(60)ez7.x
cisco / ios 12.2(58)ex 12.2(58)ex.x
cisco / ios 15.2(3)e2 15.2(3)e2.x
cisco / ios 15.1(2)sg4 15.1(2)sg4.x
cisco / ios 15.1(2)sg1 15.1(2)sg1.x
cisco / ios 15.0(2)ey1 15.0(2)ey1.x
cisco / ios 12.2(55)se1 12.2(55)se1.x
cisco / ios 15.0(2)ec 15.0(2)ec.x
cisco / ios 15.0(2)eh 15.0(2)eh.x
cisco / ios 12.2(55)se10 12.2(55)se10.x
cisco / ios 12.2(44)se3 12.2(44)se3.x
cisco / ios_xe 3.7.1e 3.7.1e.x
cisco / ios_xe 3.6.4e 3.6.4e.x
cisco / ios 15.2(3m)e3 15.2(3m)e3.x
cisco / ios 12.2(46)se 12.2(46)se.x
cisco / ios_xe 3.3.4se 3.3.4se.x
cisco / ios_xe 3.6.0e 3.6.0e.x
cisco / ios 15.2(1)e2 15.2(1)e2.x
cisco / ios 12.2(44)se6 12.2(44)se6.x
cisco / ios 12.2(60)ez1 12.2(60)ez1.x
cisco / ios 12.2(44)ex1 12.2(44)ex1.x
cisco / ios 12.2(53)ez 12.2(53)ez.x
cisco / ios_xe 3.5.1e 3.5.1e.x
cisco / ios_xe 3.3.5se 3.3.5se.x
cisco / ios 15.0(2)ey 15.0(2)ey.x
cisco / ios 12.2(60)ez4 12.2(60)ez4.x
cisco / ios 12.2(55)ex2 12.2(55)ex2.x
cisco / ios 15.0(2)eb 15.0(2)eb.x
cisco / ios 12.2(46)se2 12.2(46)se2.x
cisco / ios 12.2(60)ez8 12.2(60)ez8.x
cisco / ios 15.0(1)se1 15.0(1)se1.x
cisco / ios_xe 3.6.2ae 3.6.2ae.x
cisco / ios 15.0(2a)se9 15.0(2a)se9.x
cisco / ios 12.2(54)se 12.2(54)se.x
cisco / ios_xe 3.3.3se 3.3.3se.x
cisco / ios 12.2(50)se3 12.2(50)se3.x
cisco / ios 15.0(2)ek 15.0(2)ek.x
cisco / ios 15.2(2a)e1 15.2(2a)e1.x
cisco / ios 12.2(55)se8 12.2(55)se8.x
cisco / ios 12.2(40)se 12.2(40)se.x
cisco / ios 15.0(2)se4 15.0(2)se4.x
cisco / ios 15.0(2)ey2 15.0(2)ey2.x
cisco / ios_xe 3.3.2se 3.3.2se.x
cisco / ios 15.2(2)e2 15.2(2)e2.x
cisco / ios 12.2(58)ey2 12.2(58)ey2.x
cisco / ios 12.2(35)se 12.2(35)se.x
cisco / ios 15.2(1)e 15.2(1)e.x
cisco / ios 15.2(3)e3 15.2(3)e3.x
cisco / ios 15.0(2)ex1 15.0(2)ex1.x
cisco / ios 12.2(55)se9 12.2(55)se9.x
cisco / ios 12.2(55)se7 12.2(55)se7.x
cisco / ios 12.2(53)se1 12.2(53)se1.x
cisco / ios 15.2(4)e 15.2(4)e.x
cisco / ios 12.2(46)se1 12.2(46)se1.x
cisco / ios 12.2(55)se 12.2(55)se.x
cisco / ios 15.1(2)sg6 15.1(2)sg6.x
cisco / ios 15.2(2)e1 15.2(2)e1.x
cisco / ios_xe 3.2.2se 3.2.2se.x
cisco / ios 12.2(40)ex2 12.2(40)ex2.x
cisco / ios 12.2(46)ey 12.2(46)ey.x
cisco / ios 12.2(37)se1 12.2(37)se1.x
cisco / ios 12.2(60)ez2 12.2(60)ez2.x
cisco / ios 15.0(2)se3 15.0(2)se3.x
cisco / ios 12.2(60)ez6 12.2(60)ez6.x
cisco / ios 12.2(58)se 12.2(58)se.x
cisco / ios 15.0(2)ex 15.0(2)ex.x
cisco / ios_xe 3.2.3se 3.2.3se.x
cisco / ios 15.0(2)ex3 15.0(2)ex3.x
cisco / ios 12.2(53)se 12.2(53)se.x
cisco / ios 15.2(2)e 15.2(2)e.x
cisco / ios_xe 3.3.1se 3.3.1se.x
cisco / ios_xe 3.3.1xo 3.3.1xo.x
cisco / ios 15.0(2)ez 15.0(2)ez.x
cisco / ios 15.2(2)eb2 15.2(2)eb2.x
cisco / ios 15.0(1)ex 15.0(1)ex.x
cisco / ios 15.2(2)eb1 15.2(2)eb1.x
cisco / ios 15.0(2)se 15.0(2)se.x
cisco / ios 15.1(2)sg3 15.1(2)sg3.x
cisco / ios_xe 3.6.2e 3.6.2e.x
cisco / ios 15.2(3)e 15.2(3)e.x
cisco / ios_xe 3.5.2e 3.5.2e.x
cisco / ios 12.2(35)se2 12.2(35)se2.x
cisco / ios 12.2(58)ey 12.2(58)ey.x
cisco / ios 12.2(52)se1 12.2(52)se1.x
cisco / ios 15.2(4m)e1 15.2(4m)e1.x
cisco / ios 12.2(35)ex2 12.2(35)ex2.x
cisco / ios 15.2(2)eb 15.2(2)eb.x
cisco / ios 12.2(55)ey 12.2(55)ey.x
cisco / ios_xe 3.7.5e 3.7.5e.x
cisco / ios 12.2(40)ex1 12.2(40)ex1.x
cisco / ios 15.0(2)se9 15.0(2)se9.x
cisco / ios 12.2(60)ez 12.2(60)ez.x
cisco / ios_xe 3.3.0se 3.3.0se.x
cisco / ios 15.2(3m)e2 15.2(3m)e2.x
cisco / ios 12.2(44)ey 12.2(44)ey.x
cisco / ios_xe 3.2.0ja 3.2.0ja.x
cisco / ios 15.0(2)ex8 15.0(2)ex8.x
cisco / ios 15.0(2)se2 15.0(2)se2.x
cisco / ios 12.2(40)ex 12.2(40)ex.x
cisco / ios 12.2(55)se4 12.2(55)se4.x
cisco / ios 15.2(2)e4 15.2(2)e4.x
cisco / ios 12.2(53)ex 12.2(53)ex.x
cisco / ios 12.2(50)se5 12.2(50)se5.x
cisco / ios 12.2(44)se 12.2(44)se.x
cisco / ios 12.2(50)se1 12.2(50)se1.x
cisco / ios 15.0(2)ej 15.0(2)ej.x
cisco / ios 12.2(35)ex1 12.2(35)ex1.x
cisco / ios 12.2(53)se2 12.2(53)se2.x
cisco / ios 12.2(55)ez 12.2(55)ez.x
cisco / ios 12.2(44)se4 12.2(44)se4.x
cisco / ios 15.1(2)sg5 15.1(2)sg5.x
cisco / ios 12.2(55)se3 12.2(55)se3.x
cisco / ios 15.0(2)ej1 15.0(2)ej1.x
cisco / ios 15.2(3a)e 15.2(3a)e.x
cisco / ios 15.0(1)se3 15.0(1)se3.x
cisco / ios 15.2(1)ey 15.2(1)ey.x
cisco / ios_xe 3.8.2e 3.8.2e.x
cisco / ios 12.2(60)ez5 12.2(60)ez5.x
cisco / ios 15.0(2a)ex5 15.0(2a)ex5.x
cisco / ios 15.0(1)se 15.0(1)se.x
cisco / ios 15.2(4)e1 15.2(4)e1.x
cisco / ios 12.2(37)se 12.2(37)se.x
cisco / ios 12.2(50)se2 12.2(50)se2.x
cisco / ios 12.2(40)se2 12.2(40)se2.x
cisco / ios 12.2(58)ey1 12.2(58)ey1.x
cisco / ios 15.0(2)se1 15.0(2)se1.x
cisco / ios_xe 3.7.3e 3.7.3e.x
cisco / ios_xe 3.7.2e 3.7.2e.x
cisco / ios 15.2(1)e3 15.2(1)e3.x
cisco / ios 12.2(37)ex 12.2(37)ex.x
cisco / ios 12.2(55)ex3 12.2(55)ex3.x
cisco / ios_xe 3.5.3e 3.5.3e.x
cisco / ios_xe 3.6.3e 3.6.3e.x
cisco / ios_xe 3.3.2xo 3.3.2xo.x
cisco / ios_xe 3.8.1e 3.8.1e.x
cisco / ios 15.0(2)se7 15.0(2)se7.x
cisco / ios 15.2(3)e1 15.2(3)e1.x
cisco / ios 15.1(2)sg7 15.1(2)sg7.x
cisco / ios 15.0(2)se6 15.0(2)se6.x
cisco / ios 12.2(40)se1 12.2(40)se1.x
cisco / ios 15.0(1)ey1 15.0(1)ey1.x
cisco / ios 12.2(50)se 12.2(50)se.x
cisco / ios 15.0(2)ek1 15.0(2)ek1.x
cisco / ios 12.2(58)ez 12.2(58)ez.x
cisco / ios 12.2(37)ey 12.2(37)ey.x
cisco / ios 15.1(2)sg 15.1(2)sg.x
cisco / ios 12.2(60)ez3 12.2(60)ez3.x
cisco / ios 12.2(35)se3 12.2(35)se3.x
cisco / ios 15.0(1)se2 15.0(1)se2.x
cisco / ios 12.2(44)se1 12.2(44)se1.x
cisco / ios 12.2(53)ey 12.2(53)ey.x
cisco / ios 15.0(1)ey2 15.0(1)ey2.x
cisco / ios_xe 3.3.0xo 3.3.0xo.x
cisco / ios 12.2(52)se 12.2(52)se.x
cisco / ios 12.2(44)se5 12.2(44)se5.x
cisco / ios 15.0(2)ex10 15.0(2)ex10.x
cisco / ios 12.2(55)se6 12.2(55)se6.x
cisco / ios_xe 3.2.1se 3.2.1se.x
cisco / ios_xe 3.7.0e 3.7.0e.x
cisco / ios 12.2(52)ex1 12.2(52)ex1.x
cisco / ios_xe 3.6.1e 3.6.1e.x
cisco / ios 15.2(1)e1 15.2(1)e1.x
cisco / ios 12.2(35)se1 12.2(35)se1.x
cisco / ios 12.2(35)se4 12.2(35)se4.x
cisco / ios 12.2(46)ex 12.2(46)ex.x
cisco / ios_xe 3.5.0e 3.5.0e.x
cisco / ios 15.0(2)ed 15.0(2)ed.x
cisco / ios 15.0(2)ex2 15.0(2)ex2.x
cisco / ios 15.0(2)se5 15.0(2)se5.x
cisco / ios 12.2(44)se2 12.2(44)se2.x
cisco / ios 12.2(44)ex 12.2(44)ex.x
cisco / ios 12.2(58)se2 12.2(58)se2.x
cisco / ios_xe 3.2.0se 3.2.0se.x
cisco / ios 15.0(2)ex5 15.0(2)ex5.x
cisco / ios 15.0(2)ey3 15.0(2)ey3.x
cisco / ios 12.2(55)se5 12.2(55)se5.x
cisco / ios 12.2(55)ex 12.2(55)ex.x
cisco / ios_xe 3.8.0e 3.8.0e.x
cisco / ios 12.2(58)se1 12.2(58)se1.x
cisco / ios 12.2(52)ex 12.2(52)ex.x
cisco / ios 15.1(2)sg2 15.1(2)sg2.x
cisco / ios 12.2(40)ex3 12.2(40)ex3.x
cisco / ios 12.2(55)ex1 12.2(55)ex1.x
cisco / ios 12.2(50)se4 12.2(50)se4.x

Frequently Asked Questions

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

CVSS (Common Vulnerability Scoring System) estimates technical severity, but it doesn't automatically equal business risk. Prioritize using context like internet exposure, affected asset criticality, known exploitation (proof-of-concept or in-the-wild), and whether compensating controls exist. A "Medium" CVSS on an exposed, production system can be more urgent than a "Critical" on an isolated, non-production host.

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. In practice, risk increases sharply when exploitation becomes reliable or widespread.

Recurring findings usually come from incomplete Asset Discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host. Unknown or unmanaged assets (often called Shadow IT) are a common reason the same issues resurface.

Use a simple, repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress using consistent metrics so remediation is steady, not reactive.

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.