Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

CVE-2016-7053

In OpenSSL 1.1.0 before 1.1.0c, applications parsing invalid CMS structures can crash with a NULL pointer dereference. This is caused by a bug in the handling of the ASN.1 CHOICE type in OpenSSL 1.1.0 which can result in a NULL value being passed to the structure callback if an attempt is made to free certain invalid encodings. Only CHOICE structures using a callback which do not handle NULL value are affected.

SeverityHIGH
CVSS7.5
CWECWE-476
KEV
Published
Modified

Related Products

Product Advisory Evidence
Plug-in for OpenFlow cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Wireless LAN Controller (WLC) cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Wide Area Application Services (WAAS) cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Webex Meetings cisco-sa-20161114-openssl Cisco OpenVuln
Cisco WebEx Meetings Server cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Videoscape Control Suite cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Video Surveillance Media Server Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unity Connection cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unity cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unified Workforce Optimization Quality Management cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unified Contact Center Enterprise cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unified Contact Center cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Unified Attendant Console cisco-sa-20161114-openssl Cisco OpenVuln
Cisco UCS Director cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Telepresence Conductor cisco-sa-20161114-openssl Cisco OpenVuln
Cisco TelePresence cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Security Manager cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Secure Email and Web Manager cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Secure Email cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Prime Network Registrar cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Prime Network cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Prime IP Express cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Plug-in for OpenFlow cisco-sa-20161114-openssl Cisco OpenVuln
Cisco ONS 15454 System Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Network Analysis Module (NAM) Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Jabber for Mac cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Jabber Software Development Kit cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Jabber IM for Android cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Jabber cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Identity Services Engine Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco IOS XR Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco IOS cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Firepower System Software cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Content Security Management Appliance (SMA) cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Connected Grid Network Management System (CG-NMS) cisco-sa-20161114-openssl Cisco OpenVuln
Cisco Application Policy Infrastructure Controller (APIC) cisco-sa-20161114-openssl Cisco OpenVuln