Lucene search

CiscoCVE-2013-5547

HistoryOct 31, 2013 - 9:55 p.m.

CVE-2013-5547

2013-10-3121:55:02

CWE-20

cisco

web.nvd.nist.gov

cisco

ios xe

3.9

asr devices

denial of service

cve-2013-5547

nvd

vulnerability

eogre

ipv4

ipv6

cscuf08269

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

49.5%

JSON

Cisco IOS XE 3.9 before 3.9.2S on 1000 ASR devices allows remote attackers to cause a denial of service (device reload) by sending malformed EoGRE packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCuf08269.

Affected configurations

Nvd

Node

ciscoios_xeMatch3.9.0s

ciscoios_xeMatch3.9.1s

AND

ciscoasr_1001Match-

ciscoasr_1002Match-

ciscoasr_1002-xMatch-

ciscoasr_1004Match-

ciscoasr_1006Match-

ciscoasr_1023_routerMatch-

VendorProductVersionCPE
ciscoios_xe3.9.0scpe:2.3:o:cisco:ios_xe:3.9.0s:*:*:*:*:*:*:*
ciscoios_xe3.9.1scpe:2.3:o:cisco:ios_xe:3.9.1s:*:*:*:*:*:*:*
ciscoasr_1001-cpe:2.3:h:cisco:asr_1001:-:*:*:*:*:*:*:*
ciscoasr_1002-cpe:2.3:h:cisco:asr_1002:-:*:*:*:*:*:*:*
ciscoasr_1002-x-cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:*
ciscoasr_1004-cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:*
ciscoasr_1006-cpe:2.3:h:cisco:asr_1006:-:*:*:*:*:*:*:*
ciscoasr_1023_router-cpe:2.3:h:cisco:asr_1023_router:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	3.9.0s	cpe:2.3:o:cisco:ios_xe:3.9.0s:::::::*
cisco	ios_xe	3.9.1s	cpe:2.3:o:cisco:ios_xe:3.9.1s:::::::*
cisco	asr_1001	-	cpe:2.3:h:cisco:asr_1001:-:::::::*
cisco	asr_1002	-	cpe:2.3:h:cisco:asr_1002:-:::::::*
cisco	asr_1002-x	-	cpe:2.3:h:cisco:asr_1002-x:-:::::::*
cisco	asr_1004	-	cpe:2.3:h:cisco:asr_1004:-:::::::*
cisco	asr_1006	-	cpe:2.3:h:cisco:asr_1006:-:::::::*
cisco	asr_1023_router	-	cpe:2.3:h:cisco:asr_1023_router:-:::::::*