Buffer overflow in the IKEv1 and IKEv2 implementations in Cisco ASA Software before 8.4(7.30), 8.7 before 8.7(1.18), 9.0 before 9.0(4.38), 9.1 before 9.1(7), 9.2 before 9.2(4.5), 9.3 before 9.3(3.7), 9.4 before 9.4(2.4), and 9.5 before 9.5(2.2) on ASA 5500 devices, ASA 5500-X devices, ASA Services Module for Cisco Catalyst 6500 and Cisco 7600 devices, ASA 1000V devices, Adaptive Security Virtual Appliance (aka ASAv), Firepower 9300 ASA Security Module, and ISA 3000 devices allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via crafted UDP packets, aka Bug IDs CSCux29978 and CSCux42019.
総合評価: CVE-2016-1287 は悪用リスクが高い(94/100)。CVSS 深刻度は重大。悪用される可能性が高い(EPSS 89.78%、100 パーセンタイル) 根拠: 公開エクスプロイトが 4 件参照されています(Exploit-DB)。 直近 1 日で EPSS が +10.60% 上昇。悪用への関心が高まっている可能性があります。 推奨対応: 公開エクスプロイトが確認されています。影響範囲の確認、緩和策の適用、パッチ適用を優先してください。
リスクは変動します。再評価に基づき、本ページの表示内容を更新しています。
| EDB-ID | ソース | 種別 | 公開 | リンク |
|---|---|---|---|---|
| 39823 | exploit_db | edb | 2016-05-17 | Exploit-DB ↗ |
| — | nvd_ref | exploit_tag | Exploit-DB ↗ | |
| — | nvd_ref | exploit_tag | Exploit-DB ↗ | |
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS は日次で悪用されやすさの相対度合いを推定します。パーセンタイルは採点済み CVE の中での相対位置(高いほど相対的に深刻)を示します。
| # | 日付 | 旧 EPSS スコア | 新 EPSS スコア | Δ(新 − 旧) |
|---|---|---|---|---|
| 1 | 2026-03-04 | 79.18% | 89.78% | +10.60% |
| 2 | 2026-03-01 | 89.78% | 79.18% | -10.60% |
| 3 | 2026-02-04 | — | 89.78% | — |
EPSS の全履歴 (全 35 件)
この CVE の CVSS 指標。
| ベーススコア | バージョン | 深刻度 | ベクトル | 悪用しやすさ | 影響 | スコアの出典 |
|---|---|---|---|---|---|---|
| 9.8 | 3.0 | CRITICAL |
|
3.9 | 5.9 | [email protected] |
| 10.0 | 2.0 | HIGH |
|
10.0 | 10.0 | [email protected] |
| ベンダー | 製品 | バージョン | 生の CPE |
|---|---|---|---|
| cisco | adaptive_security_appliance_software | 7.2.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.1.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.1.13 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1.13:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.1.19 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1.19:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.1.24 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.1.24:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.6 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.6:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.10:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.14 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.14:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.18 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.18:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.19 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.19:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.22 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.22:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.2.34 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.2.34:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.3.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.3.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.3.12 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.3.12:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.3.16 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.3.16:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.6 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.6:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.18 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.18:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.25 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.25:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.27 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.27:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.30 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.30:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.4.33 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.4.33:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.7 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.7:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.8 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.8:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.10:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.12 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.12:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 7.2.5.16 | cpe:2.3:o:cisco:adaptive_security_appliance_software:7.2.5.16:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.0.45 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.0.45:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.1.11 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.1.11:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2.9 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2.9:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2.10 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2.10:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2.12 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2.12:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2.16 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2.16:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.2.17 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.2.17:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.4.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.4.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.4.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.4.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.13 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.13:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.22 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.22:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.26 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.26:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.33 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.33:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.40 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.40:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.41 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.41:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.46 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.46:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.48 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.48:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.50 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.50:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.52 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.52:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.55 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.55:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.2.5.57 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.2.5.57:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.1.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.1.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.1.6 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.1.6:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.4 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.4:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.13 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.13:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.23 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.23:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.25 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.25:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.31 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.31:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.33 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.33:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.34 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.34:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.37 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.37:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.39 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.39:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.40 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.40:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.41 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.41:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.3.2.44 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.3.2.44:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.4.0 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4.0:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.4.1 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4.1:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.4.1.3 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4.1.3:*:*:*:*:*:*:* |
| cisco | adaptive_security_appliance_software | 8.4.1.11 | cpe:2.3:o:cisco:adaptive_security_appliance_software:8.4.1.11:*:*:*:*:*:*:* |
| URL | タグ |
|---|---|
| http://packetstormsecurity.com/files/137100/Cisco-ASA-Software-IKEv1-IKEv2-Buffer-Overflow.html | Exploit Third Party Advisory VDB Entry |
| http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ike | Vendor Advisory |
| http://www.securitytracker.com/id/1034997 | Third Party Advisory VDB Entry |
| https://blog.exodusintel.com/2016/02/10/firewall-hacking/ | Exploit Technical Description Third Party Advisory |
| https://www.exploit-db.com/exploits/39823/ | Exploit Third Party Advisory VDB Entry |
| https://www.kb.cert.org/vuls/id/327976 | Third Party Advisory US Government Resource |