CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
80.5%
The IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 and IOS XE 2.1.x through 2.6.x and 3.1.xS through 3.4.xS before 3.4.2S, 3.5.xS before 3.5.1S, and 3.2.xSG before 3.2.2SG allows remote attackers to cause a denial of service (device reload) by sending IKE UDP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCts38429.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | 12.0 | cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:* |
cisco | ios | 12.2 | cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:* |
cisco | ios | 12.2(1) | cpe:2.3:o:cisco:ios:12.2\(1\):*:*:*:*:*:*:* |
cisco | ios | 12.2(1)dx | cpe:2.3:o:cisco:ios:12.2\(1\)dx:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)s | cpe:2.3:o:cisco:ios:12.2\(1\)s:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)t | cpe:2.3:o:cisco:ios:12.2\(1\)t:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)xa | cpe:2.3:o:cisco:ios:12.2\(1\)xa:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)xd | cpe:2.3:o:cisco:ios:12.2\(1\)xd:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)xd1 | cpe:2.3:o:cisco:ios:12.2\(1\)xd1:*:*:*:*:*:*:* |
cisco | ios | 12.2(1)xd3 | cpe:2.3:o:cisco:ios:12.2\(1\)xd3:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
80.5%