PT-2016-6938 · Cisco · Cisco Asr 5000/5500 Series

Published

2016-11-19

Updated

2017-07-28

CVE-2016-6466

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Cisco ASR 5000/5500 Series routers versions 20.0.0 through 21.0.0

Description A vulnerability in the IPsec component could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from establishing, resulting in a denial of service (DoS) condition.

Recommendations For versions 20.0.0 through 20.2.0, update to version 20.2.3.65026 or later. For version 20.2.3, update to version 20.2.3.65026 or later. For version 21.0.0, update to version 21.0.0.65256 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-399

Related Identifiers

CVE-2016-6466

Affected Products

Cisco Asr 5000/5500 Series

PT-2016-6938 · Cisco · Cisco Asr 5000/5500 Series

CVE-2016-6466

Weakness Enumeration

Related Identifiers

Affected Products

References · 5