{ "id": "CVE-2016-8203", "sourceIdentifier": "sirt@brocade.com", "published": "2016-10-31T21:59:00.207", "lastModified": "2017-07-29T01:34:19.100", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "A memory corruption in the IPsec code path of Brocade NetIron OS on Brocade MLXs 5.8.00 through 5.8.00e, 5.9.00 through 5.9.00bd, 6.0.00, and 6.0.00a images could allow attackers to cause a denial of service (line card reset) via certain constructed IPsec control packets." }, { "lang": "es", "value": "Una corrupci\u00f3n de memoria en la ruta de c\u00f3digo IPsec de Brocade NetIron OS en Brocade MLXs 5.8.00 hasta la versi\u00f3n 5.8.00e, 5.9.00 hasta la versi\u00f3n 5.9.00bd, 6.0.00 y 6.0.00a im\u00e1genes podr\u00edan permitir a los atacantes provocar una denegaci\u00f3n de servicio (reinicio de tarjeta en l\u00ednea) a trav\u00e9s de ciertos paquetes de control IPsec construidos." } ], "metrics": { "cvssMetricV30": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH" }, "exploitabilityScore": 3.9, "impactScore": 3.6 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8 }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:brocade:netiron_os:*:*:*:*:*:*:*:*", "versionEndIncluding": "5.8.00e", "matchCriteriaId": "0F121CF6-4562-4ED0-9353-71432914FAF4" }, { "vulnerable": true, "criteria": "cpe:2.3:o:brocade:netiron_os:*:*:*:*:*:*:*:*", "versionEndIncluding": "5.9.00bd", "matchCriteriaId": "A7ED12F6-D5B4-426A-A7CA-299CA9891FE7" }, { "vulnerable": true, "criteria": "cpe:2.3:o:brocade:netiron_os:6.0.00:*:*:*:*:*:*:*", "matchCriteriaId": "4030CAB0-B1F5-4656-AFBF-36877F64D504" }, { "vulnerable": true, "criteria": "cpe:2.3:o:brocade:netiron_os:6.0.00a:*:*:*:*:*:*:*", "matchCriteriaId": "BDE6B33B-C0A4-4499-B37B-5463A3926852" } ] } ] } ], "references": [ { "url": "http://www.brocade.com/en/backend-content/pdf-page.html?/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2016-168.pdf", "source": "sirt@brocade.com", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/bid/94232", "source": "sirt@brocade.com", "tags": [ "Third Party Advisory", "VDB Entry" ] }, { "url": "http://www.securitytracker.com/id/1037010", "source": "sirt@brocade.com" } ] }