CVE-2016-6399
7.5
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
Cisco ACE30 Application Control Engine Module through A5 3.3 and ACE 4700 Application Control Engine appliances through A5 3.3 allow remote attackers to cause a denial of service (device reload) via crafted (1) SSL or (2) TLS packets, aka Bug ID CSCvb16317.
Affected (60)
Products: Cisco: Ace 4700 Series Application Control Engine Appliance, Ace 4700 Series Application Control Engine Appliance A1, Ace 4700 Series Application Control Engine Appliance A3, Ace 4700 Series Application Control Engine Appliance A4, Ace 4700 Series Application Control Engine Appliance A5, Ace Application Control Engine Module A1, Ace Application Control Engine Module A3, Ace Application Control Engine Module A4, Ace Application Control Engine Module A5
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version a5(1.0) | |
| Version 7 | |
| Version 1.0 | |
| Version 1.0 | |
| Version 3.1a | |
| Version 7a | |
| Version 1.0 | |
| Version 1.0 | |
| Version 1.0 |
References (6)
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.