CVE-2015-0618

2015-02-2111:59:01

CWE-19

cisco

web.nvd.nist.gov

cisco

ios xr

ncs 6000

crs-x

denial of service

cve-2015-0618

nvd

security vulnerability

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

Low

EPSS

0.006

Percentile

77.8%

JSON

Cisco IOS XR 5.0.1 and 5.2.1 on Network Convergence System (NCS) 6000 devices and 5.1.3 and 5.1.4 on Carrier Routing System X (CRS-X) devices allows remote attackers to cause a denial of service (line-card reload) via malformed IPv6 packets with extension headers, aka Bug ID CSCuq95241.

Affected configurations

Nvd

Node

ciscoios_xrMatch5.0.1

ciscoios_xrMatch5.2.1

AND

cisconetwork_convergence_system_6000

Node

ciscocarrier_routing_systemMatch5.1.3

ciscocarrier_routing_systemMatch5.1.4

VendorProductVersionCPE
ciscoios_xr5.0.1cpe:2.3:o:cisco:ios_xr:5.0.1:*:*:*:*:*:*:*
ciscoios_xr5.2.1cpe:2.3:o:cisco:ios_xr:5.2.1:*:*:*:*:*:*:*
cisconetwork_convergence_system_6000*cpe:2.3:h:cisco:network_convergence_system_6000:*:*:*:*:*:*:*:*
ciscocarrier_routing_system5.1.3cpe:2.3:a:cisco:carrier_routing_system:5.1.3:*:*:*:*:*:*:*
ciscocarrier_routing_system5.1.4cpe:2.3:a:cisco:carrier_routing_system:5.1.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xr	5.0.1	cpe:2.3:o:cisco:ios_xr:5.0.1:::::::*
cisco	ios_xr	5.2.1	cpe:2.3:o:cisco:ios_xr:5.2.1:::::::*
cisco	network_convergence_system_6000	*	cpe:2.3:h:cisco:network_convergence_system_6000::::::::
cisco	carrier_routing_system	5.1.3	cpe:2.3:a:cisco:carrier_routing_system:5.1.3:::::::*
cisco	carrier_routing_system	5.1.4	cpe:2.3:a:cisco:carrier_routing_system:5.1.4:::::::*