CVE-2016-6441

CRITICAL

Cisco IOS XE 3.17.0S-3.18.1S - Unauthenticated Remote Code Execution via TL1 Code

Title source: llm
STIX 2.1

Description

A vulnerability in the Transaction Language 1 (TL1) code of Cisco ASR 900 Series routers could allow an unauthenticated, remote attacker to cause a reload of, or remotely execute code on, the affected system. This vulnerability affects Cisco ASR 900 Series Aggregation Services Routers (ASR902, ASR903, and ASR907) that are running the following releases of Cisco IOS XE Software: 3.17.0S 3.17.1S 3.17.2S 3.18.0S 3.18.1S. More Information: CSCuy15175. Known Affected Releases: 15.6(1)S 15.6(2)S. Known Fixed Releases: 15.6(1)S2.12 15.6(1.17)S0.41 15.6(1.17)SP 15.6(2)SP 16.4(0.183) 16.5(0.10).

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/94072
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1037179

Scores

CVSS v3 9.8
EPSS 0.0490
EPSS Percentile 91.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-119
Status published
Products (8)
cisco/ios_xe 3.17.0s
cisco/ios_xe 3.17.1s
cisco/ios_xe 3.17.2s
cisco/ios_xe 3.17s
cisco/ios_xe 3.18.0s
cisco/ios_xe 3.18.1s
cisco/ios_xe 3.18s
n/a/Cisco IOS XE 3.17 and 3.18 Cisco IOS XE 3.17 and 3.18
Published Nov 03, 2016
Tracked Since Feb 18, 2026