Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-1344

The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.

Published

2016-03-26T01:59:01.247

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 5.9 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

8.6

Impact Score

6.9

Weaknesses

Type: Primary
CWE-399

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios_xe	3.3s_3.3.0s	Yes
Operating System	cisco	ios_xe	3.3s_3.3.1s	Yes
Operating System	cisco	ios_xe	3.3s_3.3.2s	Yes
Operating System	cisco	ios_xe	3.3sg_3.3.0sg	Yes
Operating System	cisco	ios_xe	3.3sg_3.3.1sg	Yes
Operating System	cisco	ios_xe	3.3sg_3.3.2sg	Yes
Operating System	cisco	ios_xe	3.3xo_3.3.0xo	Yes
Operating System	cisco	ios_xe	3.3xo_3.3.1xo	Yes
Operating System	cisco	ios_xe	3.3xo_3.3.2xo	Yes
Operating System	cisco	ios_xe	3.4s_3.4.0as	Yes
Operating System	cisco	ios_xe	3.4s_3.4.0s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.1s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.2s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.3s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.4s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.5s	Yes
Operating System	cisco	ios_xe	3.4s_3.4.6s	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.0sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.1sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.2sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.3sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.4sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.5sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.6sg	Yes
Operating System	cisco	ios_xe	3.4sg_3.4.7sg	Yes
Operating System	cisco	ios_xe	3.5e_3.5.0e	Yes
Operating System	cisco	ios_xe	3.5e_3.5.1e	Yes
Operating System	cisco	ios_xe	3.5e_3.5.2e	Yes
Operating System	cisco	ios_xe	3.5e_3.5.3e	Yes
Operating System	cisco	ios_xe	3.5s_3.5.0s	Yes
Operating System	cisco	ios_xe	3.5s_3.5.1s	Yes
Operating System	cisco	ios_xe	3.5s_3.5.2s	Yes
Operating System	cisco	ios_xe	3.6e_3.6.0e	Yes
Operating System	cisco	ios_xe	3.6e_3.6.1e	Yes
Operating System	cisco	ios_xe	3.6e_3.6.2ae	Yes
Operating System	cisco	ios_xe	3.6e_3.6.2e	Yes
Operating System	cisco	ios_xe	3.6e_3.6.3e	Yes
Operating System	cisco	ios_xe	3.6s_3.6.0s	Yes
Operating System	cisco	ios_xe	3.6s_3.6.1s	Yes
Operating System	cisco	ios_xe	3.6s_3.6.2s	Yes
Operating System	cisco	ios_xe	3.7e_3.7.0e	Yes
Operating System	cisco	ios_xe	3.7e_3.7.1e	Yes
Operating System	cisco	ios_xe	3.7e_3.7.2e	Yes
Operating System	cisco	ios_xe	3.7e_3.7.3e	Yes
Operating System	cisco	ios_xe	3.7s_3.7.0s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.1s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.2s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.2ts	Yes
Operating System	cisco	ios_xe	3.7s_3.7.3s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.4as	Yes
Operating System	cisco	ios_xe	3.7s_3.7.4s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.5s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.6s	Yes
Operating System	cisco	ios_xe	3.7s_3.7.7s	Yes
Operating System	cisco	ios_xe	3.8e_3.8.0e	Yes
Operating System	cisco	ios_xe	3.8e_3.8.1e	Yes
Operating System	cisco	ios_xe	3.8s_3.8.0s	Yes
Operating System	cisco	ios_xe	3.8s_3.8.1s	Yes
Operating System	cisco	ios_xe	3.8s_3.8.2s	Yes
Operating System	cisco	ios_xe	3.9s_3.9.0as	Yes
Operating System	cisco	ios_xe	3.9s_3.9.0s	Yes
Operating System	cisco	ios_xe	3.9s_3.9.1as	Yes
Operating System	cisco	ios_xe	3.9s_3.9.1s	Yes
Operating System	cisco	ios_xe	3.9s_3.9.2s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.0s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.1s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.1xbs	Yes
Operating System	cisco	ios_xe	3.10s_3.10.2s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.3s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.4s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.5s	Yes
Operating System	cisco	ios_xe	3.10s_3.10.6s	Yes
Operating System	cisco	ios_xe	3.11s_3.11.0s	Yes
Operating System	cisco	ios_xe	3.11s_3.11.1s	Yes
Operating System	cisco	ios_xe	3.11s_3.11.2s	Yes
Operating System	cisco	ios_xe	3.11s_3.11.3s	Yes
Operating System	cisco	ios_xe	3.11s_3.11.4s	Yes
Operating System	cisco	ios_xe	3.12s_3.12.0s	Yes
Operating System	cisco	ios_xe	3.12s_3.12.1s	Yes
Operating System	cisco	ios_xe	3.12s_3.12.2s	Yes
Operating System	cisco	ios_xe	3.12s_3.12.3s	Yes
Operating System	cisco	ios_xe	3.12s_3.12.4s	Yes
Operating System	cisco	ios_xe	3.13s_3.13.0as	Yes
Operating System	cisco	ios_xe	3.13s_3.13.0s	Yes
Operating System	cisco	ios_xe	3.13s_3.13.1s	Yes
Operating System	cisco	ios_xe	3.13s_3.13.2as	Yes
Operating System	cisco	ios_xe	3.13s_3.13.2s	Yes
Operating System	cisco	ios_xe	3.13s_3.13.3s	Yes
Operating System	cisco	ios_xe	3.13s_3.13.4s	Yes
Operating System	cisco	ios_xe	3.14s_3.14.0s	Yes
Operating System	cisco	ios_xe	3.14s_3.14.1s	Yes
Operating System	cisco	ios_xe	3.14s_3.14.2s	Yes
Operating System	cisco	ios_xe	3.14s_3.14.3s	Yes
Operating System	cisco	ios_xe	3.15s_3.15.0s	Yes
Operating System	cisco	ios_xe	3.15s_3.15.1cs	Yes
Operating System	cisco	ios_xe	3.15s_3.15.1s	Yes
Operating System	cisco	ios_xe	3.15s_3.15.2s	Yes
Operating System	cisco	ios_xe	3.16s_3.16.0cs	Yes
Operating System	cisco	ios_xe	3.16s_3.16.0s	Yes
Operating System	cisco	ios_xe	3.16s_3.16.1as	Yes
Operating System	cisco	ios_xe	3.16s_3.16.1s	Yes
Operating System	cisco	ios_xe	3.17s_3.17.0s	Yes
Operating System	lenovo	thinkcentre_e75s_firmware	< m16kt61a	Yes
Operating System	netgear	jr6150_firmware	< 2017-01-06	Yes
Operating System	samsung	x14j_firmware	t-ms14jakucb-1102.5	Yes
Operating System	sun	opensolaris	snv_124	Yes
Operating System	zyxel	gs1900-10hp_firmware	< 2.50\(aazi.0\)c0	Yes
Operating System	zzinc	keymouse_firmware	3.08	Yes

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-ios-ikev2 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/85311 ([email protected])
http://www.securitytracker.com/id/1035382 ([email protected])
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160323-ios-ikev2 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/85311 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1035382 (af854a3a-2127-422b-91ae-364da2661108)