Lucene search
CiscoCVE-2015-0638HistoryMar 26, 2015 - 10:59 a.m.
CVE-2015-0638
2015-03-2610:59:04
CWE-20
cisco
web.nvd.nist.gov
31
cisco
ios
vrf
interface
remote attackers
denial of service
icmpv4
packets
vulnerability
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
High
EPSS
0.002
Percentile
56.0%
Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge) via crafted ICMPv4 packets, aka Bug ID CSCsi02145.
Affected configurations
Node
ciscoiosMatch12.2\(33\)ird1
ORciscoiosMatch12.2\(33\)ire3
ORciscoiosMatch12.2\(33\)sxi4b
ORciscoiosMatch12.2\(44\)sq1
ORciscoiosMatch12.4\(25e\)jam1
ORciscoiosMatch12.4\(25e\)jap1m
ORciscoiosMatch12.4\(25e\)jaz1
ORciscoiosMatch15.0\(2\)ed1
ORciscoiosMatch15.2\(1\)ex
ORciscoiosMatch15.2\(2\)gc
ORciscoiosMatch15.2\(2\)ja
ORciscoiosMatch15.2\(2\)ja1
ORciscoiosMatch15.2\(2\)jax
ORciscoiosMatch15.2\(2\)jax1
ORciscoiosMatch15.2\(2\)jb
ORciscoiosMatch15.2\(2\)jb1
ORciscoiosMatch15.2\(2\)jb2
ORciscoiosMatch15.2\(2\)jb3
ORciscoiosMatch15.2\(2\)jb4
ORciscoiosMatch15.2\(2\)jn1
ORciscoiosMatch15.2\(2\)jn2
ORciscoiosMatch15.2\(2\)t
ORciscoiosMatch15.2\(2\)t1
ORciscoiosMatch15.2\(2\)t2
ORciscoiosMatch15.2\(2\)t3
ORciscoiosMatch15.2\(2\)t4
ORciscoiosMatch15.2\(3\)t
ORciscoiosMatch15.3\(2\)s2
ORciscoiosMatch15.3\(3\)ja1n
ORciscoiosMatch15.3\(3\)jab1
ORciscoiosMatch15.3\(3\)jn
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ios | 12.2(33)ird1 | cpe:2.3:o:cisco:ios:12.2\(33\)ird1:*:*:*:*:*:*:* |
| cisco | ios | 12.2(33)ire3 | cpe:2.3:o:cisco:ios:12.2\(33\)ire3:*:*:*:*:*:*:* |
| cisco | ios | 12.2(33)sxi4b | cpe:2.3:o:cisco:ios:12.2\(33\)sxi4b:*:*:*:*:*:*:* |
| cisco | ios | 12.2(44)sq1 | cpe:2.3:o:cisco:ios:12.2\(44\)sq1:*:*:*:*:*:*:* |
| cisco | ios | 12.4(25e)jam1 | cpe:2.3:o:cisco:ios:12.4\(25e\)jam1:*:*:*:*:*:*:* |
| cisco | ios | 12.4(25e)jap1m | cpe:2.3:o:cisco:ios:12.4\(25e\)jap1m:*:*:*:*:*:*:* |
| cisco | ios | 12.4(25e)jaz1 | cpe:2.3:o:cisco:ios:12.4\(25e\)jaz1:*:*:*:*:*:*:* |
| cisco | ios | 15.0(2)ed1 | cpe:2.3:o:cisco:ios:15.0\(2\)ed1:*:*:*:*:*:*:* |
| cisco | ios | 15.2(1)ex | cpe:2.3:o:cisco:ios:15.2\(1\)ex:*:*:*:*:*:*:* |
| cisco | ios | 15.2(2)gc | cpe:2.3:o:cisco:ios:15.2\(2\)gc:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-0638
2015-03-26 10:00:00
nessus
nessus
Cisco IOS Software VRF ICMP Queue Wedge DoS (cisco-sa-20150325-wedge)
2015-04-03 00:00:00
cisco
cisco
prion
prion
Design/Logic Flaw
2015-03-26 10:59:00
nvd
nvd
CVE-2015-0638
2015-03-26 10:59:04
securityvulns
securityvulns
Cisco IOS multiple security vulnerabilities
2015-04-16 00:00:00
kaspersky
kaspersky
KLA10510 Multiple vulnerabilities in Cisco IOS
2015-03-26 00:00:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
High
EPSS
0.002
Percentile
56.0%
Related for CVE-2015-0638