High severity7.5NVD Advisory· Published Dec 14, 2016· Updated May 6, 2026
CVE-2016-9201
CVE-2016-9201
Description
A vulnerability in the Zone-Based Firewall feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to pass traffic that should otherwise have been dropped based on the configuration. More Information: CSCuz21015. Known Affected Releases: 15.3(3)M3. Known Fixed Releases: 15.6(2)T0.1 15.6(2.0.1a)T0 15.6(2.19)T 15.6(3)M.
Affected products
1- cpe:2.3:o:cisco:ios:15.3\(3\)m3:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- www.securityfocus.com/bid/94811nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037419nvdThird Party AdvisoryVDB Entry
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-ios-zbfnvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.