Vulnslist

find the latest Cisco vulnerabilities

Cisco Adaptive Security Appliance with FirePOWER Services Kernel Logging Denial of Service Vulnerability

cisco-sa-20160504-fpkern · High · Published · Updated

A vulnerability in the kernel logging configuration for Firepower System Software for the Adaptive Security Appliance (ASA) 5585-X FirePOWER Security Services Processor (SSP) module could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high consumption of system resources.  The vulnerability is due to the logging of certain IP packets. An attacker could exploit this vulnerability by sending a flood of specially crafted IP packets to the affected device. An exploit could allow the attacker to cause the Cisco FirePOWER module to cease inspecting traffic or go offline. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160504-fpkern

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2016-1369
Cisco Bug IDsCSCux19922
CVSS ScoreBase 7.8
Base 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source
Cisco ASA with FirePOWER Services

Related Products

Product CVE Evidence
Cisco RV Series Routers CVE-2016-1369 Cisco OpenVuln
Cisco Nexus Dashboard CVE-2016-1369 Cisco OpenVuln
Cisco Firepower System Software CVE-2016-1369 Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software CVE-2016-1369 Cisco OpenVuln
Cisco ASA 5500-X Series Firewalls CVE-2016-1369 Cisco OpenVuln
Cisco ASA with FirePOWER Services CVE-2016-1369 Cisco OpenVuln