cvelistv5 - CVE-2016-1299

CVE-2016-1299 (GCVE-0-2016-1299)

Vulnerability from cvelistv5

Published

2016-01-27 22:00

Modified

2024-08-05 22:48

Severity ?

CWE

Summary

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

gsd-2016-1299

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2016-1299

Aliases

CVE-2016-1299

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-1299",
    "description": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174.",
    "id": "GSD-2016-1299"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-1299"
      ],
      "details": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174.",
      "id": "GSD-2016-1299",
      "modified": "2023-12-13T01:21:24.092234Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2016-1299",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20160127 Cisco Small Business SG300 Managed Switch Web Framework GUI Function Denial of Service Vulnerability",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:cisco:300_series_managed_switch_firmware:1.4.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-28mp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10sfp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-24mp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf302-08:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-24:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-08:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-28pp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-48pp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-24pp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-52p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf302-08p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-48:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10mp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10pp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf302-08pp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-28:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf302-08mp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-24p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-28p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-52mp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-52:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-20:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf300-48p:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sg300-10mpp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:sf302-08mpp:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1299"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20160127 Cisco Small Business SG300 Managed Switch Web Framework GUI Function Denial of Service Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM"
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2016-02-18T21:58Z",
      "publishedDate": "2016-01-27T22:59Z"
    }
  }
}

ghsa-mv9q-m7h4-f669

Vulnerability from github

Published

2022-05-17 03:59

Modified

2022-05-17 03:59

Severity ?

5.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-1299"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-01-27T22:59:00Z",
    "severity": "MODERATE"
  },
  "details": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174.",
  "id": "GHSA-mv9q-m7h4-f669",
  "modified": "2022-05-17T03:59:05Z",
  "published": "2022-05-17T03:59:05Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1299"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
      "type": "CVSS_V3"
    }
  ]
}

De multiples vulnérabilités ont été corrigées dans les produits Cisco. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une injection de code indirecte à distance (XSS).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	Unity Connection	Cisco Unity Connection version 10.5(2.3009)
Cisco	Small Business	Cisco Small Business SG300 Managed Switch version 1.4.1.x
Cisco	N/A	Cisco Wide Area Application Services Software (WAAS) versions 5.4.x et 5.5.X antérieures à 5.5.3
Cisco	N/A	Cisco RV220W Wireless Network Security Firewall versions antérieures à 1.0.7.2
Cisco	N/A	Cisco Wide Area Application Services Software (WAAS) versions ultérieures à 5.1.1d et antérieures à 5.3.5d

References

Title

Publication Time

var-201601-0043

Vulnerability from variot

The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174. CiscoSmallBusinessSG300 is the SG300 series of intelligent switches from Cisco. Cisco Small Business SG300 Managed Switch is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCuw87174

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201601-0043",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "300 series managed switch",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "1.4.1"
      },
      {
        "model": "small business 300 series managed switch",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "1.4.1.x"
      },
      {
        "model": "small business sg300",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.4.1.x"
      },
      {
        "model": "small business sg300 managed switch",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "1.4.1.0"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "BID",
        "id": "82103"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:cisco:small_business_300_series_managed_switches_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "82103"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2016-1299",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2016-1299",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2016-00788",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-90118",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "nvd@nist.gov",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 3.9,
            "id": "CVE-2016-1299",
            "impactScore": 1.4,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2016-1299",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2016-1299",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2016-00788",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201601-656",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-90118",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174. CiscoSmallBusinessSG300 is the SG300 series of intelligent switches from Cisco. Cisco Small Business SG300 Managed Switch is prone to a remote denial-of-service vulnerability. \nAn attacker can exploit this issue to cause denial-of-service conditions. \nThis issue is being tracked by Cisco Bug ID CSCuw87174",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "BID",
        "id": "82103"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      }
    ],
    "trust": 2.52
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2016-1299",
        "trust": 3.4
      },
      {
        "db": "BID",
        "id": "82103",
        "trust": 1.0
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "db": "BID",
        "id": "82103"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "id": "VAR-201601-0043",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      }
    ],
    "trust": 1.7
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      }
    ]
  },
  "last_update_date": "2024-11-23T22:45:51.198000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20160127-sbms",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
      },
      {
        "title": "Patch for CiscoSmallBusinessSG300 Denial of Service Vulnerability",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/71081"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-399",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.6,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160127-sbms"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1299"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1299"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "db": "BID",
        "id": "82103"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "db": "BID",
        "id": "82103"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-02-03T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "date": "2016-01-27T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "date": "2016-01-27T00:00:00",
        "db": "BID",
        "id": "82103"
      },
      {
        "date": "2016-02-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "date": "2016-01-28T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "date": "2016-01-27T22:59:02.677000",
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-02-03T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "date": "2016-02-18T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90118"
      },
      {
        "date": "2016-01-27T00:00:00",
        "db": "BID",
        "id": "82103"
      },
      {
        "date": "2016-02-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-001460"
      },
      {
        "date": "2016-01-28T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      },
      {
        "date": "2024-11-21T02:46:08.590000",
        "db": "NVD",
        "id": "CVE-2016-1299"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Small Business SG300 Denial of Service Vulnerability",
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-00788"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      }
    ],
    "trust": 1.2
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "resource management error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201601-656"
      }
    ],
    "trust": 0.6
  }
}

cnvd-2016-00788

Vulnerability from cnvd

Title

Cisco Small Business SG300拒绝服务漏洞

Description

Cisco Small Business SG300是美国思科公司的SG300系列智能交换机产品。 Cisco Small Business SG300的web-management GUI实现过程中存在安全漏洞，允许远程攻击者可通过发送特制的HTTPS请求进行拒绝服务攻击。

Severity

中

Patch Name

Cisco Small Business SG300拒绝服务漏洞的补丁

Patch Description

Cisco Small Business SG300是美国思科公司的SG300系列智能交换机产品。 Cisco Small Business SG300的web-management GUI实现过程中存在安全漏洞，允许远程攻击者可通过发送特制的HTTPS请求进行拒绝服务攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全补丁以修复该漏洞： http://www.cisco.com/

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms

Impacted products

Name
Cisco Small Business SG300 1.4.1.x

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "82103"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-1299"
    }
  },
  "description": "Cisco Small Business SG300\u662f\u7f8e\u56fd\u601d\u79d1\u516c\u53f8\u7684SG300\u7cfb\u5217\u667a\u80fd\u4ea4\u6362\u673a\u4ea7\u54c1\u3002\r\n\r\nCisco Small Business SG300\u7684web-management GUI\u5b9e\u73b0\u8fc7\u7a0b\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684HTTPS\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://www.cisco.com/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-00788",
  "openTime": "2016-02-03",
  "patchDescription": "Cisco Small Business SG300\u662f\u7f8e\u56fd\u601d\u79d1\u516c\u53f8\u7684SG300\u7cfb\u5217\u667a\u80fd\u4ea4\u6362\u673a\u4ea7\u54c1\u3002\r\n\r\nCisco Small Business SG300\u7684web-management GUI\u5b9e\u73b0\u8fc7\u7a0b\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684HTTPS\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Small Business SG300\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Small Business SG300 1.4.1.x"
  },
  "referenceLink": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms",
  "serverity": "\u4e2d",
  "submitTime": "2016-01-30",
  "title": "Cisco Small Business SG300\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

fkie_cve-2016-1299

Vulnerability from fkie_nvd

Published

2016-01-27 22:59

Modified

2025-04-12 10:46

Severity ?

5.3 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Summary

References

	URL	Tags
	psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	300_series_managed_switch_firmware	1.4.1
cisco	sf300-08	*
cisco	sf300-24	*
cisco	sf300-24mp	*
cisco	sf300-24p	*
cisco	sf300-24pp	*
cisco	sf300-48	*
cisco	sf300-48p	*
cisco	sf300-48pp	*
cisco	sf302-08	*
cisco	sf302-08mp	*
cisco	sf302-08mpp	*
cisco	sf302-08p	*
cisco	sf302-08pp	*
cisco	sg300-10	*
cisco	sg300-10mp	*
cisco	sg300-10mpp	*
cisco	sg300-10p	*
cisco	sg300-10pp	*
cisco	sg300-10sfp	*
cisco	sg300-20	*
cisco	sg300-28	*
cisco	sg300-28mp	*
cisco	sg300-28p	*
cisco	sg300-28pp	*
cisco	sg300-52	*
cisco	sg300-52mp	*
cisco	sg300-52p	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:300_series_managed_switch_firmware:1.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A1354BD-4EBE-4DCE-B061-088FE90C72A6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:sf300-08:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BD1FF561-DDB4-4EEB-B94E-B086C95DED0E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-24:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8EDD17F8-9246-4DA2-BA0D-3C599B992A78",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-24mp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DF17618-ED20-4211-8B42-EB7CFA21FD2F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-24p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "76F9CED7-FEF5-475D-AC5C-B8BDF717428F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-24pp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B12F4DFF-C758-4527-9DF6-779D58BA60E0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-48:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "239838D3-BDA1-4E46-8C89-8AC591FF8A08",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-48p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "303860EA-113B-4A2A-8E6B-6F78BE83F43D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf300-48pp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0CF9609A-B31E-4333-BF81-0206A2C5F109",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf302-08:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B369B76B-4646-47AB-994B-C286A4C9DA4C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf302-08mp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C081885D-5780-49AB-9892-95050CCC82A1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf302-08mpp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4F4CAABC-7AC4-4633-9E9C-83BD6CC72F50",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf302-08p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE2C717B-530E-4CC2-BD08-CC5374D03EF9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sf302-08pp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2AD85B3E-9E2B-43BB-81C4-A1076588CA7E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D921109-B496-4EAD-9973-82A3F3C4A04D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10mp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E775E9C1-2346-40AC-95DB-51B853656E7A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10mpp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D933957E-C037-41D8-816F-BB1DEE9F3800",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0A6D158-5D25-4C02-AFDA-59225C38D3E4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10pp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "40306F26-176A-46DB-AB8F-77009BAD5444",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-10sfp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "964B81B3-D488-448C-9EBB-0AD4A31B9ABD",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-20:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C7E3015E-BB9D-42E6-8EE2-B728B8BB877D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-28:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "170FB2FB-BDE9-400B-82BE-80E54418FC7E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-28mp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FAE0ECDE-64D6-49C4-9406-24473108B1B4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-28p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A1B6D87-C501-4A82-99CC-5FDE0BC9B0D3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-28pp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB018B21-D494-4C20-88EE-3D81E9C956C4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-52:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9C79BAC9-B707-426F-9647-8646AFF50212",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-52mp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C5E6A36-11C7-41F0-BCE9-BB54762A7AF0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:sg300-52p:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8816043-4271-4E56-9BF1-6702980DCA9B",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The web-management GUI implementation on Cisco Small Business SG300 devices 1.4.1.x allows remote attackers to cause a denial of service (HTTPS outage) via crafted HTTPS requests, aka Bug ID CSCuw87174."
    },
    {
      "lang": "es",
      "value": "La implementaci\u00f3n de la GUI de gesti\u00f3n web en dispositivos Cisco Small Business SG300 1.4.1.x permite a atacantes remotos causar una denegaci\u00f3n de servicio (interrupci\u00f3n de HTTPS) a trav\u00e9s de peticiones manipuladas HTTPS, tambi\u00e9n conocida como Bug ID CSCuw87174."
    }
  ],
  "id": "CVE-2016-1299",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-01-27T22:59:02.677",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-sbms"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2016-1299 (GCVE-0-2016-1299)

Vulnerability from cvelistv5

gsd-2016-1299

Vulnerability from gsd

ghsa-mv9q-m7h4-f669

Vulnerability from github

CERTFR-2016-AVI-040

Vulnerability from certfr_avis

Solution

var-201601-0043

Vulnerability from variot

cnvd-2016-00788

Vulnerability from cnvd

fkie_cve-2016-1299

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature