CVE-2016-6401Cisco Carrier Routing System vulnerability

CWE-3995 documents5 sources
Severity
5.3MEDIUMNVD
EPSS
0.3%
top 48.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Carrier Routing System
Timeline
PublishedSep 17
Latest updateMay 17

Description

Cisco Carrier Routing System (CRS) 5.1 and 5.1.4, as used in CRS Carrier Grade Services for CRS-1 and CRS-3 devices, allows remote attackers to cause a denial of service (line-card reload) via crafted IPv6-over-MPLS packets, aka Bug ID CSCva32494.

CVSS vector

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 1.6 | Impact: 3.6

Affected Packages1 packages

NVDcisco/carrier_routing_system5.1.4, 5.1_base+1

🔴Vulnerability Details

2
GHSA
GHSA-6p2w-hwgc-v94v: Cisco Carrier Routing System (CRS) 52022-05-17
CVEList
CVE-2016-6401: Cisco Carrier Routing System (CRS) 52016-09-17

💥Exploits & PoCs

1
Exploit-DB
Cisco EPC 3928 - Multiple Vulnerabilities2016-06-07

📋Vendor Advisories

1
Cisco
Cisco Carrier Routing System IPv6 Denial of Service Vulnerability2016-09-14
CVE-2016-6401 — Cisco vulnerability | cvebase