CVSS: 7.8EPSS: 2%CPEs: 4EXPL: 0CVE-2016-6384
https://notcve.org/view.php?id=CVE-2016-6384
05 Oct 2016 — Cisco IOS 12.2 through 12.4 and 15.0 through 15.6 and IOS XE 3.1 through 3.17 and 16.2 allow remote attackers to cause a denial of service (device reload) via crafted fields in an H.323 message, aka Bug ID CSCux04257. Cisco IOS 12.2 hasta la versión 12.4 y 15.0 hasta la versión 15.6 e IOS XE 3.1 hasta la versión 3.17 y 16.2 permiten a atacantes remotos provocar una denegación de servicio (recarga del dispositivo) a través de campos manipulados en un mensaje H.323, vulnerabilidad también conocida como Bug ID... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-h323 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 506EXPL: 0CVE-2016-6392
https://notcve.org/view.php?id=CVE-2016-6392
05 Oct 2016 — Cisco IOS 12.2 and 15.0 through 15.3 and IOS XE 3.1 through 3.9 allow remote attackers to cause a denial of service (device restart) via a crafted IPv4 Multicast Source Discovery Protocol (MSDP) Source-Active (SA) message, aka Bug ID CSCud36767. Cisco IOS 12.2 y 15.0 hasta la versión 15.3 y IOS XE 3.1 hasta la versión 3.9 permiten a atacantes remotos provocar una denegación de servicio (reinicio de dispositivo) a través de un mensaje IPv4 Multicast Source Discovery Protocol (MSDP) Source-Active (SA) manipul... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160928-msdp • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2014-2146
https://notcve.org/view.php?id=CVE-2014-2146
22 Sep 2016 — The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, mishandles zone checking for existing sessions, which allows remote attackers to bypass intended resource-access restrictions via spoofed traffic that matches one of these sessions, aka Bug IDs CSCun94946 and CSCun96847. La funcionalidad Zone-Based Firewall (ZBFW) en Cisco IOS, posiblemente 15.4 y versiones anteriores e IOS XE, posiblemente 3.13 y versiones anteriores, no maneja adecu... • http://www.securityfocus.com/bid/93126 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 2%CPEs: 4891EXPL: 0CVE-2016-1409
https://notcve.org/view.php?id=CVE-2016-1409
29 May 2016 — The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and NX-OS allows remote attackers to cause a denial of service (packet-processing outage) via crafted ND messages, aka Bug ID CSCuz66542, as exploited in the wild in May 2016. El protocolo de implementación Neighbor Discovery (ND) en la pila IPv6 en Cisco IOS XE 2.1 hasta la versión 3.17S, IOS XR 2.0.0 hasta la versión 5.3.2 y NX-OS permite a atacantes remotos provocar una den... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160525-ipv6 • CWE-20: Improper Input Validation •