Lucene search

CiscoCVE-2015-6271

HistoryAug 31, 2015 - 8:59 p.m.

CVE-2015-6271

2015-08-3120:59:05

CWE-399

cisco

web.nvd.nist.gov

cve-2015-6271

cisco

ios xe

denial of service

vulnerability

asr 1000

nat

sip

nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.002

Percentile

56.0%

JSON

Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008.

Affected configurations

Nvd

Node

ciscoios_xeMatch2.1.0

ciscoios_xeMatch2.1.1

ciscoios_xeMatch2.1.2

ciscoios_xeMatch2.1.3

ciscoios_xeMatch2.2.1

ciscoios_xeMatch2.2.2

ciscoios_xeMatch2.2.3

ciscoios_xeMatch2.3.0

ciscoios_xeMatch2.3.0t

ciscoios_xeMatch2.3.1t

ciscoios_xeMatch2.3.2

ciscoios_xeMatch2.4.0

ciscoios_xeMatch2.4.1

ciscoios_xeMatch2.4.2

ciscoios_xeMatch2.4.3

ciscoios_xeMatch2.5.0

AND

ciscoasr_1001Match-

ciscoasr_1001-xMatch-

ciscoasr_1002Match-

ciscoasr_1002-xMatch-

ciscoasr_1004Match-

ciscoasr_1006Match-

ciscoasr_1013Match-

VendorProductVersionCPE
ciscoios_xe2.1.0cpe:2.3:o:cisco:ios_xe:2.1.0:*:*:*:*:*:*:*
ciscoios_xe2.1.1cpe:2.3:o:cisco:ios_xe:2.1.1:*:*:*:*:*:*:*
ciscoios_xe2.1.2cpe:2.3:o:cisco:ios_xe:2.1.2:*:*:*:*:*:*:*
ciscoios_xe2.1.3cpe:2.3:o:cisco:ios_xe:2.1.3:*:*:*:*:*:*:*
ciscoios_xe2.2.1cpe:2.3:o:cisco:ios_xe:2.2.1:*:*:*:*:*:*:*
ciscoios_xe2.2.2cpe:2.3:o:cisco:ios_xe:2.2.2:*:*:*:*:*:*:*
ciscoios_xe2.2.3cpe:2.3:o:cisco:ios_xe:2.2.3:*:*:*:*:*:*:*
ciscoios_xe2.3.0cpe:2.3:o:cisco:ios_xe:2.3.0:*:*:*:*:*:*:*
ciscoios_xe2.3.0tcpe:2.3:o:cisco:ios_xe:2.3.0t:*:*:*:*:*:*:*
ciscoios_xe2.3.1tcpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	2.1.0	cpe:2.3:o:cisco:ios_xe:2.1.0:::::::*
cisco	ios_xe	2.1.1	cpe:2.3:o:cisco:ios_xe:2.1.1:::::::*
cisco	ios_xe	2.1.2	cpe:2.3:o:cisco:ios_xe:2.1.2:::::::*
cisco	ios_xe	2.1.3	cpe:2.3:o:cisco:ios_xe:2.1.3:::::::*
cisco	ios_xe	2.2.1	cpe:2.3:o:cisco:ios_xe:2.2.1:::::::*
cisco	ios_xe	2.2.2	cpe:2.3:o:cisco:ios_xe:2.2.2:::::::*
cisco	ios_xe	2.2.3	cpe:2.3:o:cisco:ios_xe:2.2.3:::::::*
cisco	ios_xe	2.3.0	cpe:2.3:o:cisco:ios_xe:2.3.0:::::::*
cisco	ios_xe	2.3.0t	cpe:2.3:o:cisco:ios_xe:2.3.0t:::::::*
cisco	ios_xe	2.3.1t	cpe:2.3:o:cisco:ios_xe:2.3.1t:::::::*

Rows per page:

1-10 of 231

References

tools.cisco.com/security/center/viewAlert.x?alertId=40688

www.securitytracker.com/id/1033410

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.8

Confidence

High

EPSS

0.002

Percentile

56.0%

JSON

Related for CVE-2015-6271