CVE-2016-1368

moderate-risk

Published 2016-05-05

Cisco FirePOWER System Software 5.3.x through 5.3.0.6 and 5.4.x through 5.4.0.3 on FirePOWER 7000 and 8000 appliances, and on the Advanced Malware Protection (AMP) for Networks component on these appliances, allows remote attackers to cause a denial of service (packet-processing outage) via crafted packets, aka Bug ID CSCuu86214.

Do I need to act?

-

0.22% chance of exploitation

EPSS score — low exploit probability

-

Not on CISA KEV list

No confirmed active exploitation reported to CISA

?

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

7

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (20)

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Firesight System Software

Affected Vendors

Cisco

References (2)

Vendor Advisory http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20...

Vendor Advisory http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20...

49

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 1/34 · Minimal

Exposure 22/34 · High