Key Information Vulnerability Details Advisory ID: cisco-sa-20160715-bgp CVE ID: CVE-2016-1459 CWE ID: CWE-399 CVSS Score: Base 4.9, Temporal 4.7 Severity: Medium Vulnerability Description Summary: A vulnerability in the Border Gateway Protocol (BGP) message processing feature in Cisco IOS and IOS XE software could allow an authenticated, remote attacker to cause a reload of the affected device. Affected Products: This vulnerability affects all Cisco IOS and IOS XE software versions that support BGP. Workarounds: - Set the value in the BGP MIB or disable the use of the BGP MIB. - Avoid using the following BGP MIB tables, objects, and indexes as a workaround: - cbgpRouteAggregatorAddr - cbgpRouteAggregatorAddrType - cbgpRouteAggregatorAS - cbgpRouteASPathSegment - cbgpRouteAtomicAggregate - cbgpRouteBest - cbgpRouteLocalPref - cbgpRouteLocalPrefPresent - cbgpRouteMedPresent - cbgpRouteMultiExitDis - cbgpRouteNextHop - cbgpRouteOrigin - cbgpRouteUnknownAttr Remediation Use the Cisco Bugs Search Tool to find information about fixed software. Disclosure and Public Notices Cisco Product Security Incident Response Team (PSIRT) has not identified any public announcements or malicious exploitation related to this vulnerability. Links Cisco Security Advisory