Medium severity5.9NVD Advisory· Published Oct 27, 2016· Updated May 6, 2026
CVE-2016-6437
CVE-2016-6437
Description
A vulnerability in the SSL session cache management of Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to high consumption of disk space. The user would see a performance degradation. More Information: CSCva03095. Known Affected Releases: 5.3(5), 6.1(1), 6.2(1). Known Fixed Releases: 5.3(5g)1, 6.2(2.32).
Affected products
13cpe:2.3:a:cisco:wide_area_application_services:5.3.1:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:cisco:wide_area_application_services:5.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5a:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5b:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5c:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5d:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5e:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:5.3.5f:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:6.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:6.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:6.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:wide_area_application_services:6.2.1a:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3News mentions
0No linked articles in our index yet.