CVE-2016-1436
Severity Score
7.5
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The General Packet Radio Switching Tunneling Protocol 1 (aka GTPv1) implementation on Cisco ASR 5000 Packet Data Network Gateway devices before 19.4 allows remote attackers to cause a denial of service (Session Manager process restart) via a crafted GTPv1 packet, aka Bug ID CSCuz46198.
La implementación General Packet Radio Switching Tunneling Protocol 1 (también conocido como GTPv1) en dispositivos Cisco ASR 5000 Packet Data Network Gateway en versiones anteriores a 19.4 permite a atacantes remotos causar una denegación de servicio (reinicio del proceso del Administrador de sesión) a través de un paquete GTPv1 manipulado, también conocido como Bug ID CSCuz46198.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-01-04 CVE Reserved
- 2016-06-23 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securitytracker.com/id/1036152 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160621-asr | 2016-11-30 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 17.2.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "17.2.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 17.2.0.59184 Search vendor "Cisco" for product "Asr 5000 Software" and version "17.2.0.59184" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 17.3.1 Search vendor "Cisco" for product "Asr 5000 Software" and version "17.3.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 17.7.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "17.7.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.0.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.0.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.0.0.57828 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.0.0.57828" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.0.0.59167 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.0.0.59167" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.0.0.59211 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.0.0.59211" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.0.l0.59219 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.0.l0.59219" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.1.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.1.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.1.0.59776 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.1.0.59776" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.1.0.59780 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.1.0.59780" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.1_base Search vendor "Cisco" for product "Asr 5000 Software" and version "18.1_base" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 18.4.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "18.4.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.0.1 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.0.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.0.m0.60737 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.0.m0.60737" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.0.m0.60828 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.0.m0.60828" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.0.m0.61045 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.0.m0.61045" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.1.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.1.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.1.0.61559 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.1.0.61559" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.2.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.2.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Asr 5000 Software Search vendor "Cisco" for product "Asr 5000 Software" | 19.3.0 Search vendor "Cisco" for product "Asr 5000 Software" and version "19.3.0" | - |
Affected
| ||||||