CVE-2016-6409 — Cisco IOS vulnerability

CWE-3994 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.7%

top 28.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS

Timeline

PublishedSep 24

Latest updateMay 17

Description

The Data in Motion (DMo) component in Cisco IOS 15.6(1)T and IOS XE, when the IOx feature set is enabled, allows remote attackers to cause a denial of service (out-of-bounds access) via crafted traffic, aka Bug ID CSCuy54015.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDcisco/ios15.6\(1\)t

🔴Vulnerability Details

GHSA

GHSA-qxrq-2pff-rhpw: The Data in Motion (DMo) component in Cisco IOS 15↗2022-05-17

▶

CVEList

CVE-2016-6409: The Data in Motion (DMo) component in Cisco IOS 15↗2016-09-24

▶

📋Vendor Advisories

Cisco

Cisco IOS and IOS XE Software Data in Motion Component Denial of Service Vulnerability↗2016-09-21

▶