Lucene search

[email protected]CVE-2013-5549

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-5549

2022-10-0316:14:56

[email protected]

web.nvd.nist.gov

cisco

ios xr

denial of service

vulnerability

fragmented packets

bug id cscuh30380

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.5%

JSON

Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor components, which allows remote attackers to cause a denial of service (transmission outage) via (1) IPv4 or (2) IPv6 traffic, aka Bug ID CSCuh30380.

Affected configurations

NVD

Node

ciscoios_xrMatch3.8.1

ciscoios_xrMatch3.8.2

ciscoios_xrMatch3.8.3

ciscoios_xrMatch3.8.4

ciscoios_xrMatch3.9.0

ciscoios_xrMatch3.9.1

ciscoios_xrMatch3.9.2

ciscoios_xrMatch4.0.0

ciscoios_xrMatch4.0.1

ciscoios_xrMatch4.0.2

ciscoios_xrMatch4.0.3

ciscoios_xrMatch4.0.4

ciscoios_xrMatch4.1

ciscoios_xrMatch4.1.1

ciscoios_xrMatch4.1.2

ciscoios_xrMatch4.2.0

CPENameOperatorVersion
cisco:ios_xrcisco ios xreq3.8.1
cisco:ios_xrcisco ios xreq3.8.2
cisco:ios_xrcisco ios xreq3.8.3
cisco:ios_xrcisco ios xreq3.8.4
cisco:ios_xrcisco ios xreq3.9.0
cisco:ios_xrcisco ios xreq3.9.1
cisco:ios_xrcisco ios xreq3.9.2
cisco:ios_xrcisco ios xreq4.0.0
cisco:ios_xrcisco ios xreq4.0.1
cisco:ios_xrcisco ios xreq4.0.2

CPE	Name	Operator	Version
cisco:ios_xr	cisco ios xr	eq	3.8.1
cisco:ios_xr	cisco ios xr	eq	3.8.2
cisco:ios_xr	cisco ios xr	eq	3.8.3
cisco:ios_xr	cisco ios xr	eq	3.8.4
cisco:ios_xr	cisco ios xr	eq	3.9.0
cisco:ios_xr	cisco ios xr	eq	3.9.1
cisco:ios_xr	cisco ios xr	eq	3.9.2
cisco:ios_xr	cisco ios xr	eq	4.0.0
cisco:ios_xr	cisco ios xr	eq	4.0.1
cisco:ios_xr	cisco ios xr	eq	4.0.2