High severity7.5NVD Advisory· Published Dec 14, 2016· Updated May 6, 2026

CVE-2016-6467

Description

A vulnerability in IPv6 packet fragment reassembly of StarOS for Cisco Aggregation Services Router (ASR) 5000 Series Switch could allow an unauthenticated, remote attacker to cause an unexpected reload of the Network Processing Unit (NPU) process. More Information: CSCva84552. Known Affected Releases: 20.0.0 21.0.0 21.0.M0.64702. Known Fixed Releases: 21.0.0 21.0.0.65256 21.0.M0.64970 21.0.V0.65150 21.1.A0.64973 21.1.PP0.65270 21.1.R0.65130 21.1.R0.65135 21.1.VC0.65203.

Affected products

Cisco Systems, Inc./Asr 5000 Series Software3 versions
cpe:2.3:a:cisco:asr_5000_series_software:20.0.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:cisco:asr_5000_series_software:20.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:21.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:asr_5000_series_software:21.0.m0.64702:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/94772nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1037416nvdThird Party AdvisoryVDB Entry
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-asrnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000