CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
56.0%
Cisco IOS XE 3.10.2S on an ASR 1000 device with an Embedded Services Processor (ESP) module, when NAT is enabled, allows remote attackers to cause a denial of service (module crash) via malformed H.323 packets, aka Bug ID CSCup21070.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios_xe | 13.10.2s | cpe:2.3:o:cisco:ios_xe:13.10.2s:*:*:*:*:*:*:* |
cisco | asr_1001 | * | cpe:2.3:h:cisco:asr_1001:*:*:*:*:*:*:*:* |
cisco | asr_1001-x | * | cpe:2.3:h:cisco:asr_1001-x:*:*:*:*:*:*:*:* |
cisco | asr_1002 | * | cpe:2.3:h:cisco:asr_1002:*:*:*:*:*:*:*:* |
cisco | asr_1002-x | * | cpe:2.3:h:cisco:asr_1002-x:*:*:*:*:*:*:*:* |
cisco | asr_1004 | * | cpe:2.3:h:cisco:asr_1004:*:*:*:*:*:*:*:* |
cisco | asr_1006 | * | cpe:2.3:h:cisco:asr_1006:*:*:*:*:*:*:*:* |
cisco | asr_1013 | * | cpe:2.3:h:cisco:asr_1013:*:*:*:*:*:*:*:* |