CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
43.8%
The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a denial of service (card reset) via crafted session-close actions, aka Bug ID CSCug97416.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | cisco_ons_15454_system_software | * | cpe:2.3:o:cisco:cisco_ons_15454_system_software:*:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.0 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.0:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.1 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.1:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.2 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.2.1 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2.1:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.2.2 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2.2:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.3 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.3:*:*:*:*:*:*:* |
cisco | cisco_ons_15454_system_software | 9.4 | cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.4:*:*:*:*:*:*:* |
cisco | ons_15454 | * | cpe:2.3:h:cisco:ons_15454:*:*:*:*:*:*:*:* |