Vulnerabilities > Cisco > IOS XE > 3.16s.3.16.1as

DATE CVE VULNERABILITY TITLE RISK
2016-09-19 CVE-2016-6415 Information Exposure vulnerability in Cisco IOS XE
The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.
network
low complexity
cisco CWE-200
5.0
5.0
2016-03-26 CVE-2016-1348 Resource Management Errors vulnerability in Cisco IOS and IOS XE
Cisco IOS 15.0 through 15.5 and IOS XE 3.3 through 3.16 allow remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 Relay message, aka Bug ID CSCus55821.
network
low complexity
cisco CWE-399
7.8
7.8
2016-03-26 CVE-2016-1344 Resource Management Errors vulnerability in Cisco IOS and IOS XE
The IKEv2 implementation in Cisco IOS 15.0 through 15.6 and IOS XE 3.3 through 3.17 allows remote attackers to cause a denial of service (device reload) via fragmented packets, aka Bug ID CSCux38417.
network
cisco CWE-399
7.1
7.1