CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
52.7%
A vulnerability in the IPv6 packet processing engine of Cisco Small Business Smart and Managed Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of incoming IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet through an affected device. A successful exploit could allow the attacker to cause an unexpected reboot of the switch, leading to a DoS condition. This vulnerability is specific to IPv6 traffic. IPv4 traffic is not affected.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | sg250x-24_firmware | - | cpe:2.3:o:cisco:sg250x-24_firmware:-:*:*:*:*:*:*:* |
cisco | sg250x-24 | - | cpe:2.3:h:cisco:sg250x-24:-:*:*:*:*:*:*:* |
cisco | sg250x-24p_firmware | - | cpe:2.3:o:cisco:sg250x-24p_firmware:-:*:*:*:*:*:*:* |
cisco | sg250x-24p | - | cpe:2.3:h:cisco:sg250x-24p:-:*:*:*:*:*:*:* |
cisco | sg250x-48_firmware | - | cpe:2.3:o:cisco:sg250x-48_firmware:-:*:*:*:*:*:*:* |
cisco | sg250x-48 | - | cpe:2.3:h:cisco:sg250x-48:-:*:*:*:*:*:*:* |
cisco | sg250x-48p_firmware | - | cpe:2.3:o:cisco:sg250x-48p_firmware:-:*:*:*:*:*:*:* |
cisco | sg250x-48p | - | cpe:2.3:h:cisco:sg250x-48p:-:*:*:*:*:*:*:* |
cisco | sg250-08_firmware | - | cpe:2.3:o:cisco:sg250-08_firmware:-:*:*:*:*:*:*:* |
cisco | sg250-08 | - | cpe:2.3:h:cisco:sg250-08:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
52.7%