cvelistv5 - cve-2016-1321

CVE-2016-1321 (GCVE-0-2016-1321)

Vulnerability from cvelistv5 – Published: 2016-02-15 23:00 – Updated: 2024-08-05 22:55

Summary

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

	http://tools.cisco.com/security/center/content/Ci…	vendor-advisoryx_refsource_CISCO
	http://www.securitytracker.com/id/1035014	vdb-entryx_refsource_SECTRACK

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:55:14.243Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20160212 Cisco Universal Small Cell Devices Unauthorized Firmware Retrieval Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
          },
          {
            "name": "1035014",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1035014"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-02-12T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-12-02T20:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20160212 Cisco Universal Small Cell Devices Unauthorized Firmware Retrieval Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
        },
        {
          "name": "1035014",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1035014"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1321",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20160212 Cisco Universal Small Cell Devices Unauthorized Firmware Retrieval Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
            },
            {
              "name": "1035014",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1035014"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2016-1321",
    "datePublished": "2016-02-15T23:00:00",
    "dateReserved": "2016-01-04T00:00:00",
    "dateUpdated": "2024-08-05T22:55:14.243Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.12_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FB4F900-ADD6-4BB9-B9E8-1CBBF2FA30B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.13_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7DF7151A-FF5B-48BE-8989-1B489C26B6F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.14_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE9110A0-6A74-4B7D-9C17-5BC57496218B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.15_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BE1D0D9A-58D9-417B-B43D-DA554B78E355\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.16_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9D0987A2-C09D-43AD-A963-C949673DDDC2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.17_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D8A7623-A7C9-4816-99AE-37436AA407BA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.2_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"27B82D74-D53A-4F7F-B394-BA50ED87245B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.3_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF8A9173-C095-4271-BB9B-852B042A308A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7E111F3-1991-4299-8064-2820E44363B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6321E696-4E00-4EB4-B458-4FF26C81E052\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F788F403-0723-4D27-9C2E-F96DAB1052EE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA8FB794-EE86-4A93-939B-17585D5967A7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.5_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8D348FC4-6B3D-45F1-8C6F-81AC6CE551E4\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.\"}, {\"lang\": \"es\", \"value\": \"Dispositivos Cisco Universal Small Cell con firmware R2.12 hasta la versi\\u00f3n R3.5 contiene una clave de descifrado de imagen en la memoria flash, lo que permite a atacantes remotos eludir una cierta funcionalidad de validaci\\u00f3n de certificado y obtener datos sensibles de la imagen del firmware y la direcci\\u00f3n IP a trav\\u00e9s de una petici\\u00f3n a un servidor Cisco no especificado, tambi\\u00e9n conocido como Bug ID CSCut98082.\"}]",
      "id": "CVE-2016-1321",
      "lastModified": "2024-11-21T02:46:11.010",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N\", \"baseScore\": 5.8, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 1.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false}]}",
      "published": "2016-02-15T23:59:02.083",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035014\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035014\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-200\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2016-1321\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2016-02-15T23:59:02.083\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.\"},{\"lang\":\"es\",\"value\":\"Dispositivos Cisco Universal Small Cell con firmware R2.12 hasta la versi\u00f3n R3.5 contiene una clave de descifrado de imagen en la memoria flash, lo que permite a atacantes remotos eludir una cierta funcionalidad de validaci\u00f3n de certificado y obtener datos sensibles de la imagen del firmware y la direcci\u00f3n IP a trav\u00e9s de una petici\u00f3n a un servidor Cisco no especificado, tambi\u00e9n conocido como Bug ID CSCut98082.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N\",\"baseScore\":5.8,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-200\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.12_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FB4F900-ADD6-4BB9-B9E8-1CBBF2FA30B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.13_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DF7151A-FF5B-48BE-8989-1B489C26B6F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.14_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE9110A0-6A74-4B7D-9C17-5BC57496218B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.15_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE1D0D9A-58D9-417B-B43D-DA554B78E355\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.16_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D0987A2-C09D-43AD-A963-C949673DDDC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r2.17_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D8A7623-A7C9-4816-99AE-37436AA407BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.2_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27B82D74-D53A-4F7F-B394-BA50ED87245B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.3_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF8A9173-C095-4271-BB9B-852B042A308A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7E111F3-1991-4299-8064-2820E44363B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6321E696-4E00-4EB4-B458-4FF26C81E052\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F788F403-0723-4D27-9C2E-F96DAB1052EE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA8FB794-EE86-4A93-939B-17585D5967A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:universal_small_cell_firmware:r3.5_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D348FC4-6B3D-45F1-8C6F-81AC6CE551E4\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035014\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035014\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GHSA-8V3J-HP54-RP54

Vulnerability from github – Published: 2022-05-17 03:29 – Updated: 2022-05-17 03:29

Details

Severity ?

5.8 (Medium)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-1321"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-200"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-02-15T23:59:00Z",
    "severity": "MODERATE"
  },
  "details": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.",
  "id": "GHSA-8v3j-hp54-rp54",
  "modified": "2022-05-17T03:29:25Z",
  "published": "2022-05-17T03:29:25Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1321"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1035014"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2016-1321

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2016-1321

Aliases

CVE-2016-1321

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-1321",
    "description": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.",
    "id": "GSD-2016-1321"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-1321"
      ],
      "details": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082.",
      "id": "GSD-2016-1321",
      "modified": "2023-12-13T01:21:24.699514Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2016-1321",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20160212 Cisco Universal Small Cell Devices Unauthorized Firmware Retrieval Vulnerability",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
          },
          {
            "name": "1035014",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1035014"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.3_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.12_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.16_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.15_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.5_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.14_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.13_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.2_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.17_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1321"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-200"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20160212 Cisco Universal Small Cell Devices Unauthorized Firmware Retrieval Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
            },
            {
              "name": "1035014",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1035014"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM"
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2016-12-06T03:06Z",
      "publishedDate": "2016-02-15T23:59Z"
    }
  }
}

CERTFR-2016-AVI-065

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco Universal Small Cell devices
Cisco	N/A	Cisco Emergency Responder version 11.5(0.99833.5)
Cisco	IOS	Cisco Industrial Ethernet 2000 Series Switches exécutant Cisco IOS version 15.2(4)E
Cisco	Small Business	Cisco Small Business 500 Series Wireless Access Point version 1.0.4.4
Cisco	N/A	Cisco AMP exécutant Cisco ESA versions 9.5.0-201, 9.6.0-051, et 9.7.0-125
Cisco	N/A	Cisco 1000 Series Connected Grid Router si la fonctionnalité SNMP est configurée

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco cisco-sa-20160216-wap du 16 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160211-esaamp du 11 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160216-grid du 16 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160212-usc du 12 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-ie2000 du 15 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-er du 15 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-er du 15 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160216-grid du 16 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160215-ie2000 du 15 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160216-wap du 16 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160212-usc du 12 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160211-esaamp du 11 février 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco Universal Small Cell devices",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Emergency Responder version 11.5(0.99833.5)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Industrial Ethernet 2000 Series Switches ex\u00e9cutant Cisco IOS version 15.2(4)E",
      "product": {
        "name": "IOS",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Small Business 500 Series Wireless Access Point version 1.0.4.4",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco AMP ex\u00e9cutant Cisco ESA versions 9.5.0-201, 9.6.0-051, et 9.7.0-125",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco 1000 Series Connected Grid Router si la fonctionnalit\u00e9 SNMP est configur\u00e9e",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-1331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1331"
    },
    {
      "name": "CVE-2016-1321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1321"
    },
    {
      "name": "CVE-2016-1315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1315"
    },
    {
      "name": "CVE-2016-1330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1330"
    },
    {
      "name": "CVE-2016-1334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1334"
    },
    {
      "name": "CVE-2016-1333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1333"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-er du 15    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160215-er"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-grid du 16    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160216-grid"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-ie2000 du 15    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160215-ie2000"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-wap du 16    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160216-wap"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160212-usc du 12    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160211-esaamp du 11    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160211-esaamp"
    }
  ],
  "reference": "CERTFR-2016-AVI-065",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-02-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-wap du 16 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160211-esaamp du 11 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-grid du 16 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160212-usc du 12 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-ie2000 du 15 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-er du 15 f\u00e9vrier 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-065

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco Universal Small Cell devices
Cisco	N/A	Cisco Emergency Responder version 11.5(0.99833.5)
Cisco	IOS	Cisco Industrial Ethernet 2000 Series Switches exécutant Cisco IOS version 15.2(4)E
Cisco	Small Business	Cisco Small Business 500 Series Wireless Access Point version 1.0.4.4
Cisco	N/A	Cisco AMP exécutant Cisco ESA versions 9.5.0-201, 9.6.0-051, et 9.7.0-125
Cisco	N/A	Cisco 1000 Series Connected Grid Router si la fonctionnalité SNMP est configurée

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco cisco-sa-20160216-wap du 16 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160211-esaamp du 11 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160216-grid du 16 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160212-usc du 12 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-ie2000 du 15 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-er du 15 février 2016	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20160215-er du 15 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160216-grid du 16 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160215-ie2000 du 15 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160216-wap du 16 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160212-usc du 12 février 2016	-	other
Bulletin de sécurité Cisco cisco-sa-20160211-esaamp du 11 février 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco Universal Small Cell devices",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Emergency Responder version 11.5(0.99833.5)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Industrial Ethernet 2000 Series Switches ex\u00e9cutant Cisco IOS version 15.2(4)E",
      "product": {
        "name": "IOS",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Small Business 500 Series Wireless Access Point version 1.0.4.4",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco AMP ex\u00e9cutant Cisco ESA versions 9.5.0-201, 9.6.0-051, et 9.7.0-125",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco 1000 Series Connected Grid Router si la fonctionnalit\u00e9 SNMP est configur\u00e9e",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-1331",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1331"
    },
    {
      "name": "CVE-2016-1321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1321"
    },
    {
      "name": "CVE-2016-1315",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1315"
    },
    {
      "name": "CVE-2016-1330",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1330"
    },
    {
      "name": "CVE-2016-1334",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1334"
    },
    {
      "name": "CVE-2016-1333",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1333"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-er du 15    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160215-er"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-grid du 16    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160216-grid"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-ie2000 du 15    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160215-ie2000"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-wap du 16    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160216-wap"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160212-usc du 12    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160211-esaamp du 11    f\u00e9vrier 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160211-esaamp"
    }
  ],
  "reference": "CERTFR-2016-AVI-065",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-02-17T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, un\ncontournement de la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-wap du 16 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160211-esaamp du 11 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160216-grid du 16 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160212-usc du 12 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-ie2000 du 15 f\u00e9vrier 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20160215-er du 15 f\u00e9vrier 2016",
      "url": null
    }
  ]
}

VAR-201602-0059

Vulnerability from variot - Updated: 2023-12-18 13:19

Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082. Cisco Universal Small Cell (USC) is an end-to-end platform of Cisco, which integrates 3G, LTE and wireless networks. The platform provides features such as a suitable network access point and high-performance mobile voice coverage for any environment. A security vulnerability exists in Cisco USC devices using firmware versions R2.12 through R3.5 due to the inclusion of image-decryption keys in flash memory

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201602-0059",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.4_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r2.12_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.2_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.4_2.1"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r2.17_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.4_1.1"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r2.16_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.3_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.4_2.17"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "r3.5_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "r2.15_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "r2.14_base"
      },
      {
        "model": "universal small cell",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "r2.13_base"
      },
      {
        "model": "universal small cell series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "r2.12 to  r3.5"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.3_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.12_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.16_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.15_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.5_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.14_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.13_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.2_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.17_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      }
    ]
  },
  "cve": "CVE-2016-1321",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "None",
            "baseScore": 5.0,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2016-1321",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "NONE",
            "baseScore": 5.0,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 10.0,
            "id": "VHN-90140",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:P/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "NONE",
            "baseScore": 5.8,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "exploitabilityScore": 3.9,
            "impactScore": 1.4,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2016-1321",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201602-293",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-90140",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082. Cisco Universal Small Cell (USC) is an end-to-end platform of Cisco, which integrates 3G, LTE and wireless networks. The platform provides features such as a suitable network access point and high-performance mobile voice coverage for any environment. A security vulnerability exists in Cisco USC devices using firmware versions R2.12 through R3.5 due to the inclusion of image-decryption keys in flash memory",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      }
    ],
    "trust": 1.71
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2016-1321",
        "trust": 2.5
      },
      {
        "db": "SECTRACK",
        "id": "1035014",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293",
        "trust": 0.7
      },
      {
        "db": "NSFOCUS",
        "id": "32461",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-90140",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "id": "VAR-201602-0059",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T13:19:45.874000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20160212-usc",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160212-usc"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-200",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160212-usc"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id/1035014"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1321"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1321"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/32461"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-02-15T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "date": "2016-02-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "date": "2016-02-15T23:59:02.083000",
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "date": "2016-02-16T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-12-06T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90140"
      },
      {
        "date": "2016-02-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      },
      {
        "date": "2016-12-06T03:06:50.653000",
        "db": "NVD",
        "id": "CVE-2016-1321"
      },
      {
        "date": "2016-02-16T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Universal Small Cell Vulnerability bypassing certain certificate validation functions in device firmware",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-001499"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "information disclosure",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201602-293"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2016-1321

Vulnerability from fkie_nvd - Published: 2016-02-15 23:59 - Updated: 2025-04-12 10:46

Severity ?

5.8 (Medium) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Summary

References

URL	Tags
psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc	Vendor Advisory
psirt@cisco.com	http://www.securitytracker.com/id/1035014
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1035014

Impacted products

Vendor	Product	Version
cisco	universal_small_cell_firmware	r2.12_base
cisco	universal_small_cell_firmware	r2.13_base
cisco	universal_small_cell_firmware	r2.14_base
cisco	universal_small_cell_firmware	r2.15_base
cisco	universal_small_cell_firmware	r2.16_base
cisco	universal_small_cell_firmware	r2.17_base
cisco	universal_small_cell_firmware	r3.2_base
cisco	universal_small_cell_firmware	r3.3_base
cisco	universal_small_cell_firmware	r3.4_1.1
cisco	universal_small_cell_firmware	r3.4_2.1
cisco	universal_small_cell_firmware	r3.4_2.17
cisco	universal_small_cell_firmware	r3.4_base
cisco	universal_small_cell_firmware	r3.5_base

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.12_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FB4F900-ADD6-4BB9-B9E8-1CBBF2FA30B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.13_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "7DF7151A-FF5B-48BE-8989-1B489C26B6F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.14_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE9110A0-6A74-4B7D-9C17-5BC57496218B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.15_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "BE1D0D9A-58D9-417B-B43D-DA554B78E355",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.16_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D0987A2-C09D-43AD-A963-C949673DDDC2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r2.17_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D8A7623-A7C9-4816-99AE-37436AA407BA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.2_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "27B82D74-D53A-4F7F-B394-BA50ED87245B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.3_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF8A9173-C095-4271-BB9B-852B042A308A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7E111F3-1991-4299-8064-2820E44363B3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "6321E696-4E00-4EB4-B458-4FF26C81E052",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_2.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "F788F403-0723-4D27-9C2E-F96DAB1052EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.4_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "AA8FB794-EE86-4A93-939B-17585D5967A7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:universal_small_cell_firmware:r3.5_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "8D348FC4-6B3D-45F1-8C6F-81AC6CE551E4",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cisco Universal Small Cell devices with firmware R2.12 through R3.5 contain an image-decryption key in flash memory, which allows remote attackers to bypass a certain certificate-validation feature and obtain sensitive firmware-image and IP address data via a request to an unspecified Cisco server, aka Bug ID CSCut98082."
    },
    {
      "lang": "es",
      "value": "Dispositivos Cisco Universal Small Cell con firmware R2.12 hasta la versi\u00f3n R3.5 contiene una clave de descifrado de imagen en la memoria flash, lo que permite a atacantes remotos eludir una cierta funcionalidad de validaci\u00f3n de certificado y obtener datos sensibles de la imagen del firmware y la direcci\u00f3n IP a trav\u00e9s de una petici\u00f3n a un servidor Cisco no especificado, tambi\u00e9n conocido como Bug ID CSCut98082."
    }
  ],
  "id": "CVE-2016-1321",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 5.0,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.8,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-02-15T23:59:02.083",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securitytracker.com/id/1035014"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1035014"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-200"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CNVD-2016-01125

Vulnerability from cnvd - Published: 2016-02-18

Title

Cisco Universal Small Cell设备未授权固件检索漏洞

Description

Cisco Universal Small Cell Solution是一个端到端架构，集成了3G、LTE、电信级Wi-Fi及SON技术，实现安全有效的异构网络。 Cisco Universal Small Cell设备（固件R2.12-R3.5）的闪存中存在安全漏洞，远程攻击者通过请求一个思科服务器，可绕过某些证书验证功能、获取敏感固件图形及IP地址数据。

Severity

中

Patch Name

Cisco Universal Small Cell设备未授权固件检索漏洞的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://tools.cisco.com/security/center/publicationListing.x#~CiscoSecurityResponse

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc

Impacted products

Name
Cisco Universal Small Cell

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-1321"
    }
  },
  "description": "Cisco Universal Small Cell Solution\u662f\u4e00\u4e2a\u7aef\u5230\u7aef\u67b6\u6784\uff0c\u96c6\u6210\u4e863G\u3001LTE\u3001\u7535\u4fe1\u7ea7Wi-Fi\u53caSON\u6280\u672f\uff0c\u5b9e\u73b0\u5b89\u5168\u6709\u6548\u7684\u5f02\u6784\u7f51\u7edc\u3002\r\n\r\nCisco Universal Small Cell\u8bbe\u5907\uff08\u56fa\u4ef6R2.12-R3.5\uff09\u7684\u95ea\u5b58\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u8bf7\u6c42\u4e00\u4e2a\u601d\u79d1\u670d\u52a1\u5668\uff0c\u53ef\u7ed5\u8fc7\u67d0\u4e9b\u8bc1\u4e66\u9a8c\u8bc1\u529f\u80fd\u3001\u83b7\u53d6\u654f\u611f\u56fa\u4ef6\u56fe\u5f62\u53caIP\u5730\u5740\u6570\u636e\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://tools.cisco.com/security/center/publicationListing.x#~CiscoSecurityResponse",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-01125",
  "openTime": "2016-02-18",
  "patchDescription": "Cisco Universal Small Cell Solution\u662f\u4e00\u4e2a\u7aef\u5230\u7aef\u67b6\u6784\uff0c\u96c6\u6210\u4e863G\u3001LTE\u3001\u7535\u4fe1\u7ea7Wi-Fi\u53caSON\u6280\u672f\uff0c\u5b9e\u73b0\u5b89\u5168\u6709\u6548\u7684\u5f02\u6784\u7f51\u7edc\u3002\r\n\r\nCisco Universal Small Cell\u8bbe\u5907\uff08\u56fa\u4ef6R2.12-R3.5\uff09\u7684\u95ea\u5b58\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u8bf7\u6c42\u4e00\u4e2a\u601d\u79d1\u670d\u52a1\u5668\uff0c\u53ef\u7ed5\u8fc7\u67d0\u4e9b\u8bc1\u4e66\u9a8c\u8bc1\u529f\u80fd\u3001\u83b7\u53d6\u654f\u611f\u56fa\u4ef6\u56fe\u5f62\u53caIP\u5730\u5740\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Universal Small Cell\u8bbe\u5907\u672a\u6388\u6743\u56fa\u4ef6\u68c0\u7d22\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Universal Small Cell"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160212-usc",
  "serverity": "\u4e2d",
  "submitTime": "2016-02-17",
  "title": "Cisco Universal Small Cell\u8bbe\u5907\u672a\u6388\u6743\u56fa\u4ef6\u68c0\u7d22\u6f0f\u6d1e"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-1321 (GCVE-0-2016-1321)

GHSA-8V3J-HP54-RP54

GSD-2016-1321

CERTFR-2016-AVI-065

Solution

CERTFR-2016-AVI-065

Solution

VAR-201602-0059

FKIE_CVE-2016-1321

CNVD-2016-01125

Tags

Sightings

Nomenclature