CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
72.1%
The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S allows remote attackers to cause a denial of service (device reload) via a malformed ND packet with the Cryptographically Generated Address (CGA) option, aka Bug ID CSCuo04400.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | 12.2(50)sy | cpe:2.3:o:cisco:ios:12.2\(50\)sy:*:*:*:*:*:*:* |
cisco | ios | 12.2(50)sy1 | cpe:2.3:o:cisco:ios:12.2\(50\)sy1:*:*:*:*:*:*:* |
cisco | ios | 12.2(50)sy2 | cpe:2.3:o:cisco:ios:12.2\(50\)sy2:*:*:*:*:*:*:* |
cisco | ios | 12.2(50)sy3 | cpe:2.3:o:cisco:ios:12.2\(50\)sy3:*:*:*:*:*:*:* |
cisco | ios | 12.2(50)sy4 | cpe:2.3:o:cisco:ios:12.2\(50\)sy4:*:*:*:*:*:*:* |
cisco | ios | 15.0(1)ex | cpe:2.3:o:cisco:ios:15.0\(1\)ex:*:*:*:*:*:*:* |
cisco | ios | 15.0(1)sy | cpe:2.3:o:cisco:ios:15.0\(1\)sy:*:*:*:*:*:*:* |
cisco | ios | 15.0(1)sy1 | cpe:2.3:o:cisco:ios:15.0\(1\)sy1:*:*:*:*:*:*:* |
cisco | ios | 15.0(1)sy2 | cpe:2.3:o:cisco:ios:15.0\(1\)sy2:*:*:*:*:*:*:* |
cisco | ios | 15.0(1)sy3 | cpe:2.3:o:cisco:ios:15.0\(1\)sy3:*:*:*:*:*:*:* |