Denial of Service Vulnerability in Cisco FirePOWER System Software
CVE-2016-1368

7.5HIGH

Key Information:

Vendor: Cisco
Status: Firesight System Software
Vendor: CVE Published:; 5 May 2016

What is CVE-2016-1368?

Remote attackers can exploit a vulnerability in Cisco FirePOWER System Software that allows for a denial of service. It affects systems running versions 5.3.x through 5.3.0.6 and 5.4.x through 5.4.0.3 on FirePOWER 7000 and 8000 appliances, as well as on the Advanced Malware Protection component for Networks. This can lead to operational disruption by causing packet-processing outages when crafted packets are sent to the affected systems.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 5, 2016
Vulnerability Reserved
Jan 4, 2016