CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
Percentile
77.8%
A vulnerability in the TFTP server feature of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
The TFTP server feature is not enabled by default.
Cisco has released software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available.
This advisory is available at the following link:
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | 12.2cx | cpe:2.3:o:cisco:ios:12.2cx:*:*:*:*:*:*:* |
cisco | ios | 12.2cy | cpe:2.3:o:cisco:ios:12.2cy:*:*:*:*:*:*:* |
cisco | ios | 12.2se | cpe:2.3:o:cisco:ios:12.2se:*:*:*:*:*:*:* |
cisco | ios | 12.2zi | cpe:2.3:o:cisco:ios:12.2zi:*:*:*:*:*:*:* |
cisco | ios | 12.2ex | cpe:2.3:o:cisco:ios:12.2ex:*:*:*:*:*:*:* |
cisco | ios | 12.2ey | cpe:2.3:o:cisco:ios:12.2ey:*:*:*:*:*:*:* |
cisco | ios | 12.4 | cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:* |
cisco | ios | 12.2ez | cpe:2.3:o:cisco:ios:12.2ez:*:*:*:*:*:*:* |
cisco | ios | 12.4mr | cpe:2.3:o:cisco:ios:12.4mr:*:*:*:*:*:*:* |
cisco | ios | 12.4t | cpe:2.3:o:cisco:ios:12.4t:*:*:*:*:*:*:* |