Back to search
CVE-2016-6415
Published: Sep 19, 2016
Modified: Jan 12, 2026
PUBLISHED
Description
The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
1036841
vdb-entry
x_refsource_SECTRACK
20160916 IKEv1 Information Disclosure Vulnerability in Multiple Cisco Products
vendor-advisory
x_refsource_CISCO
93003
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now