CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
40.4%
The crypto engine process in Cisco IOS on Aggregation Services Router (ASR) Route Processor 2 does not properly manage memory, which allows local users to cause a denial of service (route processor crash) by creating multiple tunnels and then examining encryption statistics, aka Bug ID CSCuc52193.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | - | cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:* |
cisco | aggregation_services_router_route_processor | 2 | cpe:2.3:h:cisco:aggregation_services_router_route_processor:2:*:*:*:*:*:*:* |