Vulnerability Description
A vulnerability in the Zone-Based Firewall feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to pass traffic that should otherwise have been dropped based on the configuration. More Information: CSCuz21015. Known Affected Releases: 15.3(3)M3. Known Fixed Releases: 15.6(2)T0.1 15.6(2.0.1a)T0 15.6(2.19)T 15.6(3)M.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 15.3\(3\)m3 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/94811Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037419Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2MitigationVendor Advisory
- http://www.securityfocus.com/bid/94811Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1037419Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2MitigationVendor Advisory
FAQ
What is CVE-2016-9201?
CVE-2016-9201 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability in the Zone-Based Firewall feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to pass traffic that should otherwise have been dropped based ...
How severe is CVE-2016-9201?
CVE-2016-9201 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-9201?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.