National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2016-5285

Change History

Initial Analysis - 11/22/2019 1:24:49 PM

Action Type Old Value New Value
Changed Reference Type
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00049.html No Types Assigned
http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00049.html Mailing List, Third Party Advisory
Changed Reference Type
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5285 No Types Assigned
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-5285 Issue Tracking, Patch, Third Party Advisory
Changed Reference Type
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2016-5285 No Types Assigned
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2016-5285 Issue Tracking, Third Party Advisory
Changed Reference Type
https://downloads.avaya.com/css/P8/documents/101033728 No Types Assigned
https://downloads.avaya.com/css/P8/documents/101033728 Third Party Advisory
Changed Reference Type
https://packetstormsecurity.com/files/cve/CVE-2016-5285 No Types Assigned
https://packetstormsecurity.com/files/cve/CVE-2016-5285 Third Party Advisory, VDB Entry
Changed Reference Type
https://security-tracker.debian.org/tracker/CVE-2016-5285 No Types Assigned
https://security-tracker.debian.org/tracker/CVE-2016-5285 Patch, Third Party Advisory
Changed Reference Type
https://www.rapid7.com/db/vulnerabilities/amazon_linux-cve-2016-5285 No Types Assigned
https://www.rapid7.com/db/vulnerabilities/amazon_linux-cve-2016-5285 Third Party Advisory
Added CWE
NIST CWE-476
Added CVSS V2
NIST (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Added CVSS V3.1
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:avaya:aura_system_platform_firmware:*:*:*:*:*:*:*:* versions from (including) 6.3 up to (including) 6.4.0
     OR
          cpe:2.3:h:avaya:aura_system_platform:-:*:*:*:*:*:*:*
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:avaya:cs1000e\/cs1000m_signaling_server_firmware:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.6
     OR
          cpe:2.3:h:avaya:cs1000e\/cs1000m_signaling_server:-:*:*:*:*:*:*:*
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:avaya:cs1000e_firmware:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.6
     OR
          cpe:2.3:h:avaya:cs1000e:-:*:*:*:*:*:*:*
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:avaya:cs1000m_firmware:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.6
     OR
          cpe:2.3:h:avaya:cs1000m:-:*:*:*:*:*:*:*
Added CPE Configuration
AND
     OR
          *cpe:2.3:o:avaya:session_border_controller_for_enterprise_firmware:*:*:*:*:*:*:*:* versions from (including) 6.2 up to (including) 6.3
          *cpe:2.3:o:avaya:session_border_controller_for_enterprise_firmware:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.1
     OR
          cpe:2.3:h:avaya:session_border_controller_for_enterprise:-:*:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:a:avaya:aura_application_enablement_services:*:*:*:*:*:*:*:* versions from (including) 6.1 up to (including) 6.3.3
     *cpe:2.3:a:avaya:aura_application_enablement_services:7.0:*:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp10:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp10.1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp11:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp11.1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp12:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp12.1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp12.2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp12.3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp12.5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_application_server_5300:3.0:sp7:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_communication_manager:*:*:*:*:*:*:*:* versions from (including) 6.0 up to (including) 6.3.117.0
     *cpe:2.3:a:avaya:aura_communication_manager:7.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_communication_manager:7.0:sp:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_communication_manager:7.0:sp3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_communication_manager_messagint:7.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_communication_manager_messagint:7.0:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:breeze_platform:*:*:*:*:*:*:*:* versions from (including) 3.0 up to (including) 3.2
     *cpe:2.3:a:avaya:call_management_system:17.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:call_management_system:17.0:r3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:call_management_system:17.0:r4:*:*:*:*:*:*
     *cpe:2.3:a:avaya:call_management_system:17.0:r5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:call_management_system:17.0:r6:*:*:*:*:*:*
     *cpe:2.3:a:avaya:call_management_system:*:*:*:*:*:*:*:* versions from (including) 18.0.0.1 up to (including) 18.0.0.2
     *cpe:2.3:a:avaya:iq:5.2.x:*:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:a:avaya:aura_conferencing:7.0:*:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:7.2:*:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp4:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp7:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp8:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_conferencing:8.0:sp9:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_experience_portal:*:*:*:*:*:*:*:* versions from (including) 6.0 up to (including) 7.1
Added CPE Configuration
OR
     *cpe:2.3:a:avaya:aura_messaging:6.3:*:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_messaging:6.3.3:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_messaging:6.3.3:sp4:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_messaging:6.3.3:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_messaging:6.3.3:sp6:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:*:*:*:*:*:*:*:* versions from (including) 6.3 up to (including) 6.3.18
     *cpe:2.3:a:avaya:aura_session_manager:7.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:7.0:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:7.0:sp2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:7.0.1:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:7.0.1:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_session_manager:7.0.1:sp2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:aura_system_manager:*:*:*:*:*:*:*:* versions from (including) 6.3 up to (including) 6.3.18
     *cpe:2.3:a:avaya:aura_system_manager:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.0.1.3
     *cpe:2.3:a:avaya:aura_utility_services:*:*:*:*:*:*:*:* versions from (including) 6.3 up to (including) 6.3.14
     *cpe:2.3:a:avaya:aura_utility_services:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (including) 7.0.1.2
     *cpe:2.3:a:avaya:meeting_exchange:6.2:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:meeting_exchange:6.2:sp3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:message_networking:*:*:*:*:*:*:*:* versions from (including) 5.2 up to (including) 6.3
     *cpe:2.3:a:avaya:one-x_client_enablement_services:6.2:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:one-x_client_enablement_services:6.2:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:one-x_client_enablement_services:6.2:sp2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:one-x_client_enablement_services:6.2:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:proactive_contact:*:*:*:*:*:*:*:* versions from (including) 5.0 up to (including) 5.1.2
Added CPE Configuration
OR
     *cpe:2.3:a:avaya:ip_office:8.1:*:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp10:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp11:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp12:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp4:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp6:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp7:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp8:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:9.1:sp9:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:-:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp1:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp2:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp3:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp4:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp5:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp6:*:*:*:*:*:*
     *cpe:2.3:a:avaya:ip_office:10.0:sp7:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:a:mozilla:nss:*:*:*:*:*:*:*:* versions up to (excluding) 3.26
Added CPE Configuration
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
Added CPE Configuration
OR
     *cpe:2.3:o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*