What is the severity of CVE-2016-1351?

CVE-2016-1351 has been rated as high severity due to its ability to cause denial of service through device reload.

How do I fix CVE-2016-1351?

To fix CVE-2016-1351, upgrade to a version of Cisco IOS or NX-OS that has addressed this vulnerability.

What type of attack does CVE-2016-1351 allow?

CVE-2016-1351 allows remote attackers to execute a denial of service attack by sending a crafted header in a packet.

Which Cisco products are affected by CVE-2016-1351?

CVE-2016-1351 affects various versions of Cisco IOS 15.1 and 15.2, as well as Cisco NX-OS versions from 4.1 to 6.2.

Is CVE-2016-1351 being actively exploited?

As of now, there are no confirmed reports of active exploitation of CVE-2016-1351 in the wild.

Vulnerability/
CVE-2016-1351

high

7.8

CWE

20 399

26/3/2016

5/8/2024

CVE-2016-1351: Input Validation

First published: Sat Mar 26 2016(Updated: )

The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.1 and 15.2 and NX-OS 4.1 through 6.2 allows remote attackers to cause a denial of service (device reload) via a crafted header in a packet, aka Bug ID CSCuu64279.

Credit: ykramarz@cisco.com ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS	=15.1\(1\)sy1
Cisco IOS	=15.1\(1\)sy2
Cisco IOS	=15.1\(1\)sy3
Cisco IOS	=15.1\(1\)sy4
Cisco IOS	=15.1\(1\)sy5
Cisco IOS	=15.1\(2\)sy
Cisco IOS	=15.1\(2\)sy1
Cisco IOS	=15.1\(2\)sy2
Cisco IOS	=15.1\(2\)sy3
Cisco IOS	=15.1\(2\)sy4
Cisco IOS	=15.1\(2\)sy4a
Cisco IOS	=15.1\(2\)sy5
Cisco IOS	=15.1\(2\)sy6
Cisco IOS	=15.2\(1\)sy
Cisco IOS	=15.2\(1\)sy0a
Cisco IOS	=15.2\(1\)sy1
Cisco IOS	=15.3\(3\)jk6
Cisco NX-OS	=4.1\(2\)
Cisco NX-OS	=4.1\(3\)
Cisco NX-OS	=4.1\(4\)
Cisco NX-OS	=4.1\(5\)
Cisco NX-OS	=4.2\(2a\)
Cisco NX-OS	=4.2\(3\)
Cisco NX-OS	=4.2\(4\)
Cisco NX-OS	=4.2\(6\)
Cisco NX-OS	=4.2\(8\)
Cisco NX-OS	=5.0\(2a\)
Cisco NX-OS	=5.0\(3\)
Cisco NX-OS	=5.0\(5\)
Cisco NX-OS	=5.1\(1\)
Cisco NX-OS	=5.1\(1a\)
Cisco NX-OS	=5.1\(3\)
Cisco NX-OS	=5.1\(4\)
Cisco NX-OS	=5.1\(5\)
Cisco NX-OS	=5.1\(6\)
Cisco NX-OS	=5.2\(1\)
Cisco NX-OS	=5.2\(3a\)
Cisco NX-OS	=5.2\(4\)
Cisco NX-OS	=5.2\(5\)
Cisco NX-OS	=5.2\(7\)
Cisco NX-OS	=5.2\(9\)
Cisco NX-OS	=6.0\(1\)
Cisco NX-OS	=6.0\(2\)
Cisco NX-OS	=6.0\(3\)
Cisco NX-OS	=6.0\(4\)
Cisco NX-OS	=6.1\(1\)
Cisco NX-OS	=6.1\(2\)
Cisco NX-OS	=6.1\(3\)
Cisco NX-OS	=6.1\(4\)
Cisco NX-OS	=6.1\(4a\)
Cisco NX-OS	=6.2\(2\)
Cisco NX-OS	=6.2\(2a\)
Cisco NX-OS	=6.2\(6\)
Cisco NX-OS	=6.2\(6b\)
Cisco NX-OS	=6.2\(8\)
Cisco NX-OS	=6.2\(8a\)
Cisco NX-OS	=6.2\(8b\)
Cisco NX-OS	=6.2\(10\)
Cisco NX-OS	=6.2\(12\)

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-1351?
CVE-2016-1351 has been rated as high severity due to its ability to cause denial of service through device reload.
How do I fix CVE-2016-1351?
To fix CVE-2016-1351, upgrade to a version of Cisco IOS or NX-OS that has addressed this vulnerability.
What type of attack does CVE-2016-1351 allow?
CVE-2016-1351 allows remote attackers to execute a denial of service attack by sending a crafted header in a packet.
Which Cisco products are affected by CVE-2016-1351?
CVE-2016-1351 affects various versions of Cisco IOS 15.1 and 15.2, as well as Cisco NX-OS versions from 4.1 to 6.2.
Is CVE-2016-1351 being actively exploited?
As of now, there are no confirmed reports of active exploitation of CVE-2016-1351 in the wild.

agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/references
agent/severity
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
vendor/cisco
canonical/cisco ios
version/cisco ios/15.1\(1\)sy1
version/cisco ios/15.1\(1\)sy2
version/cisco ios/15.1\(1\)sy3
version/cisco ios/15.1\(1\)sy4
version/cisco ios/15.1\(1\)sy5
version/cisco ios/15.1\(2\)sy
version/cisco ios/15.1\(2\)sy1
version/cisco ios/15.1\(2\)sy2
version/cisco ios/15.1\(2\)sy3
version/cisco ios/15.1\(2\)sy4
version/cisco ios/15.1\(2\)sy4a
version/cisco ios/15.1\(2\)sy5
version/cisco ios/15.1\(2\)sy6
version/cisco ios/15.2\(1\)sy
version/cisco ios/15.2\(1\)sy0a
version/cisco ios/15.2\(1\)sy1
version/cisco ios/15.3\(3\)jk6
canonical/cisco nx-os
version/cisco nx-os/4.1\(2\)
version/cisco nx-os/4.1\(3\)
version/cisco nx-os/4.1\(4\)
version/cisco nx-os/4.1\(5\)
version/cisco nx-os/4.2\(2a\)
version/cisco nx-os/4.2\(3\)
version/cisco nx-os/4.2\(4\)
version/cisco nx-os/4.2\(6\)
version/cisco nx-os/4.2\(8\)
version/cisco nx-os/5.0\(2a\)
version/cisco nx-os/5.0\(3\)
version/cisco nx-os/5.0\(5\)
version/cisco nx-os/5.1\(1\)
version/cisco nx-os/5.1\(1a\)
version/cisco nx-os/5.1\(3\)
version/cisco nx-os/5.1\(4\)
version/cisco nx-os/5.1\(5\)
version/cisco nx-os/5.1\(6\)
version/cisco nx-os/5.2\(1\)
version/cisco nx-os/5.2\(3a\)
version/cisco nx-os/5.2\(4\)
version/cisco nx-os/5.2\(5\)
version/cisco nx-os/5.2\(7\)
version/cisco nx-os/5.2\(9\)
version/cisco nx-os/6.0\(1\)
version/cisco nx-os/6.0\(2\)
version/cisco nx-os/6.0\(3\)
version/cisco nx-os/6.0\(4\)
version/cisco nx-os/6.1\(1\)
version/cisco nx-os/6.1\(2\)
version/cisco nx-os/6.1\(3\)
version/cisco nx-os/6.1\(4\)
version/cisco nx-os/6.1\(4a\)
version/cisco nx-os/6.2\(2\)
version/cisco nx-os/6.2\(2a\)
version/cisco nx-os/6.2\(6\)
version/cisco nx-os/6.2\(6b\)
version/cisco nx-os/6.2\(8\)
version/cisco nx-os/6.2\(8a\)
version/cisco nx-os/6.2\(8b\)
version/cisco nx-os/6.2\(10\)
version/cisco nx-os/6.2\(12\)