CVE-2015-0709

2015-04-2901:59:01

CWE-399

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

43.8%

JSON

Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service (device crash) by leveraging knowledge of the RADIUS secret and sending crafted RADIUS packets, aka Bug ID CSCur21348.

Affected configurations

Nvd

Node

ciscoios_xeMatch-

Node

ciscoiosMatch15.5\(3\)s

ciscoiosMatch15.5s

VendorProductVersionCPE
ciscoios_xe-cpe:2.3:o:cisco:ios_xe:-:*:*:*:*:*:*:*
ciscoios15.5(3)scpe:2.3:o:cisco:ios:15.5\(3\)s:*:*:*:*:*:*:*
ciscoios15.5scpe:2.3:o:cisco:ios:15.5s:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	-	cpe:2.3:o:cisco:ios_xe:-:::::::*
cisco	ios	15.5(3)s	cpe:2.3:o:cisco:ios:15.5\(3\)s:::::::*
cisco	ios	15.5s	cpe:2.3:o:cisco:ios:15.5s:::::::*