Lucene search
CiscoCVE-2015-0648HistoryMar 26, 2015 - 10:59 a.m.
CVE-2015-0648
2015-03-2610:59:13
CWE-399
cisco
web.nvd.nist.gov
32
cisco
ios
memory leak
denial of service
cip tcp packets
cve-2015-0648
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
High
EPSS
0.002
Percentile
56.2%
Memory leak in Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3 allows remote attackers to cause a denial of service (memory consumption) via crafted Common Industrial Protocol (CIP) TCP packets, aka Bug ID CSCun49658.
Affected configurations
Node
ciscoiosMatch12.2\(33\)ird1
ORciscoiosMatch12.2\(33\)ire3
ORciscoiosMatch12.2\(33\)sxi4b
ORciscoiosMatch12.2\(44\)ex
ORciscoiosMatch12.2\(44\)ex1
ORciscoiosMatch12.2\(44\)sq1
ORciscoiosMatch12.2\(46\)se
ORciscoiosMatch12.2\(46\)se1
ORciscoiosMatch12.2\(46\)se2
ORciscoiosMatch12.2\(50\)se
ORciscoiosMatch12.2\(50\)se1
ORciscoiosMatch12.2\(50\)se2
ORciscoiosMatch12.2\(50\)se3
ORciscoiosMatch12.2\(50\)se4
ORciscoiosMatch12.2\(50\)se5
ORciscoiosMatch12.2\(52\)se
ORciscoiosMatch12.2\(52\)se1
ORciscoiosMatch12.2\(55\)se
ORciscoiosMatch12.2\(55\)se3
ORciscoiosMatch12.2\(55\)se4
ORciscoiosMatch12.2\(55\)se5
ORciscoiosMatch12.2\(55\)se6
ORciscoiosMatch12.2\(55\)se7
ORciscoiosMatch12.2\(55\)se8
ORciscoiosMatch12.2\(55\)se9
ORciscoiosMatch12.2\(58\)se2
ORciscoiosMatch12.4\(25e\)jam1
ORciscoiosMatch12.4\(25e\)jap1m
ORciscoiosMatch12.4\(25e\)jaz1
ORciscoiosMatch15.0\(1\)ey
ORciscoiosMatch15.0\(1\)ey1
ORciscoiosMatch15.0\(1\)ey2
ORciscoiosMatch15.0\(2\)eb
ORciscoiosMatch15.0\(2\)ed1
ORciscoiosMatch15.0\(2\)ey
ORciscoiosMatch15.0\(2\)ey1
ORciscoiosMatch15.0\(2\)ey2
ORciscoiosMatch15.0\(2\)ey3
ORciscoiosMatch15.0\(2\)se
ORciscoiosMatch15.0\(2\)se1
ORciscoiosMatch15.0\(2\)se2
ORciscoiosMatch15.0\(2\)se3
ORciscoiosMatch15.0\(2\)se4
ORciscoiosMatch15.0\(2\)se5
ORciscoiosMatch15.0\(2\)se6
ORciscoiosMatch15.0\(2\)se7
ORciscoiosMatch15.2\(1\)ex
ORciscoiosMatch15.2\(1\)ey
ORciscoiosMatch15.2\(2\)e
ORciscoiosMatch15.2\(2\)e1
ORciscoiosMatch15.2\(2\)jb1
ORciscoiosMatch15.3\(2\)s2
ORciscoiosMatch15.3\(3\)ja
ORciscoiosMatch15.3\(3\)ja1
ORciscoiosMatch15.3\(3\)ja1m
ORciscoiosMatch15.3\(3\)ja1n
ORciscoiosMatch15.3\(3\)jaa
ORciscoiosMatch15.3\(3\)jab
ORciscoiosMatch15.3\(3\)jab1
ORciscoiosMatch15.3\(3\)jn
ORciscoiosMatch15.3\(3\)jnb
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ios | 12.2(33)ird1 | cpe:2.3:o:cisco:ios:12.2\(33\)ird1:*:*:*:*:*:*:* |
| cisco | ios | 12.2(33)ire3 | cpe:2.3:o:cisco:ios:12.2\(33\)ire3:*:*:*:*:*:*:* |
| cisco | ios | 12.2(33)sxi4b | cpe:2.3:o:cisco:ios:12.2\(33\)sxi4b:*:*:*:*:*:*:* |
| cisco | ios | 12.2(44)ex | cpe:2.3:o:cisco:ios:12.2\(44\)ex:*:*:*:*:*:*:* |
| cisco | ios | 12.2(44)ex1 | cpe:2.3:o:cisco:ios:12.2\(44\)ex1:*:*:*:*:*:*:* |
| cisco | ios | 12.2(44)sq1 | cpe:2.3:o:cisco:ios:12.2\(44\)sq1:*:*:*:*:*:*:* |
| cisco | ios | 12.2(46)se | cpe:2.3:o:cisco:ios:12.2\(46\)se:*:*:*:*:*:*:* |
| cisco | ios | 12.2(46)se1 | cpe:2.3:o:cisco:ios:12.2\(46\)se1:*:*:*:*:*:*:* |
| cisco | ios | 12.2(46)se2 | cpe:2.3:o:cisco:ios:12.2\(46\)se2:*:*:*:*:*:*:* |
| cisco | ios | 12.2(50)se | cpe:2.3:o:cisco:ios:12.2\(50\)se:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2015-03-26 10:59:00
nvd
nvd
CVE-2015-0648
2015-03-26 10:59:13
cvelist
cvelist
CVE-2015-0648
2015-03-26 10:00:00
cisco
cisco
Multiple Vulnerabilities in Cisco IOS Software Common Industrial Protocol
2015-03-25 16:00:00
nessus
nessus
Cisco IOS Software TCP CIP DoS
2015-04-03 00:00:00
securityvulns
securityvulns
Cisco IOS multiple security vulnerabilities
2015-04-16 00:00:00
kaspersky
kaspersky
KLA10510 Multiple vulnerabilities in Cisco IOS
2015-03-26 00:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
High
EPSS
0.002
Percentile
56.2%
Related for CVE-2015-0648