CVE-2015-6360

EPSS 17.94%
Published 21.04.2016 10:59:00
Last modified 12.04.2025 10:46:40
Source psirt@cisco.com
Teams watchlist Login
Open Login

The encryption-processing feature in Cisco libSRTP before 1.5.3 allows remote attackers to cause a denial of service via crafted fields in SRTP packets, aka Bug ID CSCux00686.

Affected products Warnungen 0 Metrics 3 CWE 1 References 12

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Ios Xe Version3.10s_3.10.0s

Cisco ≫ Ios Xe Version3.10s_3.10.1s

Cisco ≫ Ios Xe Version3.10s_3.10.1xbs

Cisco ≫ Ios Xe Version3.10s_3.10.2s

Cisco ≫ Ios Xe Version3.10s_3.10.2ts

Cisco ≫ Ios Xe Version3.10s_3.10.4s

Cisco ≫ Ios Xe Version3.10s_3.10.5s

Cisco ≫ Ios Xe Version3.10s_3.10.6s

Cisco ≫ Ios Xe Version3.10s_3.10.7s

Cisco ≫ Ios Xe Version3.11s_3.11.0s

Cisco ≫ Ios Xe Version3.11s_3.11.1s

Cisco ≫ Ios Xe Version3.11s_3.11.2s

Cisco ≫ Ios Xe Version3.11s_3.11.3s

Cisco ≫ Ios Xe Version3.11s_3.11.4s

Cisco ≫ Ios Xe Version3.13s_3.13.0s

Cisco ≫ Ios Xe Version3.13s_3.13.1s

Cisco ≫ Ios Xe Version3.13s_3.13.4s

Cisco ≫ Ios Xe Version3.14s_3.14.0s

Cisco ≫ Ios Xe Version3.15s_3.15.1s

Cisco ≫ Ios Xe Version3.15s_3.15.2s

Cisco ≫ Webex Meeting Center Versionbase

Cisco ≫ Unified Ip Phone 7900 Series Firmware Version9.9_base

Cisco ≫ Unified Wireless Ip Phone 7920 Firmware Version1.0_base

Cisco ≫ Unified Wireless Ip Phone 7920 Firmware Version2.0_base

Cisco ≫ Adaptive Security Appliance Software Version8.1.0.104

Cisco ≫ Adaptive Security Appliance Software Version8.2.0.45

Cisco ≫ Adaptive Security Appliance Software Version8.2.1

Cisco ≫ Adaptive Security Appliance Software Version8.2.1.11

Cisco ≫ Adaptive Security Appliance Software Version8.2.2

Cisco ≫ Adaptive Security Appliance Software Version8.2.2.9

Cisco ≫ Adaptive Security Appliance Software Version8.2.2.10

Cisco ≫ Adaptive Security Appliance Software Version8.2.2.12

Cisco ≫ Adaptive Security Appliance Software Version8.2.2.16

Cisco ≫ Adaptive Security Appliance Software Version8.2.2.17

Cisco ≫ Adaptive Security Appliance Software Version8.2.3

Cisco ≫ Adaptive Security Appliance Software Version8.2.4

Cisco ≫ Adaptive Security Appliance Software Version8.2.4.1

Cisco ≫ Adaptive Security Appliance Software Version8.2.4.4

Cisco ≫ Adaptive Security Appliance Software Version8.2.5

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.13

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.22

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.26

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.33

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.40

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.41

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.46

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.48

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.50

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.52

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.55

Cisco ≫ Adaptive Security Appliance Software Version8.2.5.57

Cisco ≫ Adaptive Security Appliance Software Version8.3.1

Cisco ≫ Adaptive Security Appliance Software Version8.3.1.1

Cisco ≫ Adaptive Security Appliance Software Version8.3.1.4

Cisco ≫ Adaptive Security Appliance Software Version8.3.1.6

Cisco ≫ Adaptive Security Appliance Software Version8.3.2

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.4

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.13

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.23

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.25

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.31

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.33

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.34

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.37

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.39

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.40

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.41

Cisco ≫ Adaptive Security Appliance Software Version8.3.2.44

Cisco ≫ Adaptive Security Appliance Software Version8.4.0

Cisco ≫ Adaptive Security Appliance Software Version8.4.1

Cisco ≫ Adaptive Security Appliance Software Version8.4.1.3

Cisco ≫ Adaptive Security Appliance Software Version8.4.1.11

Cisco ≫ Adaptive Security Appliance Software Version8.4.2

Cisco ≫ Adaptive Security Appliance Software Version8.4.2.1

Cisco ≫ Adaptive Security Appliance Software Version8.4.2.8

Cisco ≫ Adaptive Security Appliance Software Version8.4.3

Cisco ≫ Adaptive Security Appliance Software Version8.4.3.8

Cisco ≫ Adaptive Security Appliance Software Version8.4.3.9

Cisco ≫ Adaptive Security Appliance Software Version8.4.4

Cisco ≫ Adaptive Security Appliance Software Version8.4.4.1

Cisco ≫ Adaptive Security Appliance Software Version8.4.4.3

Cisco ≫ Adaptive Security Appliance Software Version8.4.4.5

Cisco ≫ Adaptive Security Appliance Software Version8.4.4.9

Cisco ≫ Adaptive Security Appliance Software Version8.4.5

Cisco ≫ Adaptive Security Appliance Software Version8.4.5.6

Cisco ≫ Adaptive Security Appliance Software Version8.4.6

Cisco ≫ Adaptive Security Appliance Software Version8.4.7

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.3

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.15

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.22

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.23

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.26

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.28

Cisco ≫ Adaptive Security Appliance Software Version8.4.7.29

Cisco ≫ Adaptive Security Appliance Software Version8.5.1

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.1

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.6

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.7

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.14

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.17

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.18

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.19

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.21

Cisco ≫ Adaptive Security Appliance Software Version8.5.1.24

Cisco ≫ Adaptive Security Appliance Software Version8.6.1

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.1

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.2

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.5

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.10

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.12

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.13

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.14

Cisco ≫ Adaptive Security Appliance Software Version8.6.1.17

Cisco ≫ Adaptive Security Appliance Software Version8.7.1

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.1

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.3

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.4

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.7

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.8

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.11

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.13

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.16

Cisco ≫ Adaptive Security Appliance Software Version8.7.1.17

Cisco ≫ Adaptive Security Appliance Software Version9.0.1

Cisco ≫ Adaptive Security Appliance Software Version9.0.2

Cisco ≫ Adaptive Security Appliance Software Version9.0.2.10

Cisco ≫ Adaptive Security Appliance Software Version9.0.3

Cisco ≫ Adaptive Security Appliance Software Version9.0.3.6

Cisco ≫ Adaptive Security Appliance Software Version9.0.3.8

Cisco ≫ Adaptive Security Appliance Software Version9.0.4

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.1

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.5

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.7

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.17

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.20

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.24

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.26

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.29

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.33

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.35

Cisco ≫ Adaptive Security Appliance Software Version9.0.4.37

Cisco ≫ Adaptive Security Appliance Software Version9.1.1

Cisco ≫ Adaptive Security Appliance Software Version9.1.1.4

Cisco ≫ Adaptive Security Appliance Software Version9.1.2

Cisco ≫ Adaptive Security Appliance Software Version9.1.2.8

Cisco ≫ Adaptive Security Appliance Software Version9.1.3

Cisco ≫ Adaptive Security Appliance Software Version9.1.3.2

Cisco ≫ Adaptive Security Appliance Software Version9.1.4

Cisco ≫ Adaptive Security Appliance Software Version9.1.4.5

Cisco ≫ Adaptive Security Appliance Software Version9.1.5

Cisco ≫ Adaptive Security Appliance Software Version9.1.5.10

Cisco ≫ Adaptive Security Appliance Software Version9.1.5.12

Cisco ≫ Adaptive Security Appliance Software Version9.1.5.15

Cisco ≫ Adaptive Security Appliance Software Version9.1.5.21

Cisco ≫ Adaptive Security Appliance Software Version9.1.6

Cisco ≫ Adaptive Security Appliance Software Version9.1.6.1

Cisco ≫ Adaptive Security Appliance Software Version9.1.6.4

Cisco ≫ Adaptive Security Appliance Software Version9.1.6.6

Cisco ≫ Adaptive Security Appliance Software Version9.1.6.8

Cisco ≫ Adaptive Security Appliance Software Version9.1.6.10

Cisco ≫ Adaptive Security Appliance Software Version9.2.1

Cisco ≫ Adaptive Security Appliance Software Version9.2.2

Cisco ≫ Adaptive Security Appliance Software Version9.2.2.4

Cisco ≫ Adaptive Security Appliance Software Version9.2.2.7

Cisco ≫ Adaptive Security Appliance Software Version9.2.2.8

Cisco ≫ Adaptive Security Appliance Software Version9.2.3

Cisco ≫ Adaptive Security Appliance Software Version9.2.3.3

Cisco ≫ Adaptive Security Appliance Software Version9.2.3.4

Cisco ≫ Adaptive Security Appliance Software Version9.2.4

Cisco ≫ Adaptive Security Appliance Software Version9.3.1

Cisco ≫ Adaptive Security Appliance Software Version9.3.1.1

Cisco ≫ Adaptive Security Appliance Software Version9.3.2

Cisco ≫ Adaptive Security Appliance Software Version9.3.2.2

Cisco ≫ Adaptive Security Appliance Software Version9.3.3

Cisco ≫ Adaptive Security Appliance Software Version9.3.3.1

Cisco ≫ Adaptive Security Appliance Software Version9.3.3.2

Cisco ≫ Adaptive Security Appliance Software Version9.3.3.5

Cisco ≫ Adaptive Security Appliance Software Version9.3.5

Cisco ≫ Unity Connection Version1.2_base

Cisco ≫ Unity Connection Version2.0_base

Cisco ≫ Unity Connection Version2.1_base

Cisco ≫ Unity Connection Version7.0_base

Cisco ≫ Unity Connection Version7.1.5es33.32900-33

Cisco ≫ Unity Connection Version7.1_base

Cisco ≫ Unity Connection Version8.0_base

Cisco ≫ Unity Connection Version8.5_base

Cisco ≫ Unity Connection Version8.6_base

Cisco ≫ Unity Connection Version10.0.0

Cisco ≫ Unity Connection Version10.0.5

Cisco ≫ Unity Connection Version10.5_base

Cisco ≫ Unity Connection Version11.0_0

Cisco ≫ Unity Connection Version11.5_base

Cisco ≫ Libsrtp Version <= 1.5.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	17.94%	0.949

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-libsrtp

Vendor Advisory

http://www.debian.org/security/2016/dsa-3539

http://www.securitytracker.com/id/1035636

http://www.securitytracker.com/id/1035637

http://www.securitytracker.com/id/1035648

http://www.securitytracker.com/id/1035649

http://www.securitytracker.com/id/1035650

http://www.securitytracker.com/id/1035651

http://www.securitytracker.com/id/1035652

https://nvd.nist.gov/vuln/detail/CVE-2015-6360

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6360

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6360

EUVD