PT-2016-7707 · Cisco · Cisco Ons 15454 Series Multiservice Provisioning Platforms

Published

2016-12-14

Updated

2016-12-22

CVE-2016-9211

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Cisco ONS 15454 Series Multiservice Provisioning Platforms version 10.51

Description A vulnerability in TCP port management could allow an unauthenticated, remote attacker to cause the controller card to unexpectedly reload.

Recommendations For version 10.51, update to a version that fixes the issue, as the current version is affected by the TCP port management vulnerability.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-9211

Affected Products

Cisco Ons 15454 Series Multiservice Provisioning Platforms

PT-2016-7707 · Cisco · Cisco Ons 15454 Series Multiservice Provisioning Platforms

CVE-2016-9211

Weakness Enumeration

Related Identifiers

Affected Products

References · 5