Remote Code Execution in Cisco ASR 5000 Series Software IKEv2 Feature
CVE-2016-9203
7.5HIGH
Summary
A vulnerability exists within the IKEv2 feature of Cisco's ASR 5000 Series Software, potentially allowing an unauthenticated remote attacker to cause a disruption by reloading the ipsecmgr process. This may lead to a temporary denial of service for users relying on affected systems. Affected versions include 20.2.3 and 20.2.3.65026, with remediation available in the subsequent versions. It is crucial for users and administrators to ensure their systems are updated to maintain network integrity and security.
Affected Version(s)
Cisco ASR 5000 Cisco ASR 5000
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved