CVE-2016-6399
high
Cisco CVSS v3 Base Score
7.5
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.7%
Exploitation probability in 30 days
Top 27% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Confidentiality
None
Integrity
None
Availability
High
Vulnerability Report
Generated by CyberWatcher
Description
Cisco ACE30 Application Control Engine Module through A5 3.3 and ACE 4700 Application Control Engine appliances through A5 3.3 allow remote attackers to cause a denial of service (device reload) via crafted (1) SSL or (2) TLS packets, aka Bug ID CSCvb16317.
CWE
CWE-20Affected Products
cisco ace application control engine module a1cisco ace application control engine module a3cisco ace application control engine module a4cisco ace application control engine module a5cisco ace 4700 series application control engine appliancecisco ace 4700 series application control engine appliance a1cisco ace 4700 series application control engine appliance a3cisco ace 4700 series application control engine appliance a4cisco ace 4700 series application control engine appliance a5