Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-3280
cisco
ios
nat
memory leak
cve-2011-3280
denial of service
security vulnerability
nvd
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
51.9%
Memory leak in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted SIP packets to UDP port 5060, aka Bug ID CSCtj04672.
Affected configurations
Node
ciscoios_xeMatch3.1.0sg
ORciscoios_xeMatch3.1.1sg
Node
ciscoiosMatch12.1
ORciscoiosMatch12.1e
ORciscoiosMatch12.2
ORciscoiosMatch12.2b
ORciscoiosMatch12.2bc
ORciscoiosMatch12.2bx
ORciscoiosMatch12.2cx
ORciscoiosMatch12.2cz
ORciscoiosMatch12.2ew
ORciscoiosMatch12.2ewa
ORciscoiosMatch12.2ex
ORciscoiosMatch12.2ey
ORciscoiosMatch12.2ez
ORciscoiosMatch12.2fx
ORciscoiosMatch12.2fy
ORciscoiosMatch12.2fz
ORciscoiosMatch12.2ira
ORciscoiosMatch12.2irb
ORciscoiosMatch12.2irc
ORciscoiosMatch12.2ird
ORciscoiosMatch12.2ire
ORciscoiosMatch12.2irf
ORciscoiosMatch12.2ixa
ORciscoiosMatch12.2ixb
ORciscoiosMatch12.2ixc
ORciscoiosMatch12.2ixd
ORciscoiosMatch12.2ixe
ORciscoiosMatch12.2ixf
ORciscoiosMatch12.2ixg
ORciscoiosMatch12.2ixh
ORciscoiosMatch12.2mc
ORciscoiosMatch12.2mra
ORciscoiosMatch12.2mrb
ORciscoiosMatch12.2s
ORciscoiosMatch12.2sb
ORciscoiosMatch12.2sbc
ORciscoiosMatch12.2sca
ORciscoiosMatch12.2scb
ORciscoiosMatch12.2scc
ORciscoiosMatch12.2scd
ORciscoiosMatch12.2sce
ORciscoiosMatch12.2se
ORciscoiosMatch12.2sea
ORciscoiosMatch12.2seb
ORciscoiosMatch12.2sec
ORciscoiosMatch12.2sed
ORciscoiosMatch12.2see
ORciscoiosMatch12.2sef
ORciscoiosMatch12.2seg
ORciscoiosMatch12.2sg
ORciscoiosMatch12.2sga
ORciscoiosMatch12.2sm
ORciscoiosMatch12.2sq
ORciscoiosMatch12.2sra
ORciscoiosMatch12.2srb
ORciscoiosMatch12.2src
ORciscoiosMatch12.2srd
ORciscoiosMatch12.2sre
ORciscoiosMatch12.2su
ORciscoiosMatch12.2sv
ORciscoiosMatch12.2sw
ORciscoiosMatch12.2sx
ORciscoiosMatch12.2sxa
ORciscoiosMatch12.2sxb
ORciscoiosMatch12.2sxd
ORciscoiosMatch12.2sxe
ORciscoiosMatch12.2sxf
ORciscoiosMatch12.2sxh
ORciscoiosMatch12.2sxi
ORciscoiosMatch12.2sxj
ORciscoiosMatch12.2sy
ORciscoiosMatch12.2sz
ORciscoiosMatch12.2t
ORciscoiosMatch12.2tpc
ORciscoiosMatch12.2xb
ORciscoiosMatch12.2xna
ORciscoiosMatch12.2xnb
ORciscoiosMatch12.2xnc
ORciscoiosMatch12.2xne
ORciscoiosMatch12.2xnf
ORciscoiosMatch12.2xo
ORciscoiosMatch12.2ya
ORciscoiosMatch12.2yf
ORciscoiosMatch12.2yg
ORciscoiosMatch12.2yh
ORciscoiosMatch12.2yj
ORciscoiosMatch12.2yl
ORciscoiosMatch12.2ym
ORciscoiosMatch12.2yn
ORciscoiosMatch12.2yq
ORciscoiosMatch12.2yr
ORciscoiosMatch12.2ys
ORciscoiosMatch12.2yt
ORciscoiosMatch12.2yu
ORciscoiosMatch12.2yv
ORciscoiosMatch12.2yw
ORciscoiosMatch12.2yx
ORciscoiosMatch12.2yy
ORciscoiosMatch12.2yz
ORciscoiosMatch12.2za
ORciscoiosMatch12.2zb
ORciscoiosMatch12.2ze
ORciscoiosMatch12.2zf
ORciscoiosMatch12.2zh
ORciscoiosMatch12.2zl
ORciscoiosMatch12.2zu
ORciscoiosMatch12.2zx
ORciscoiosMatch12.2zy
ORciscoiosMatch12.2zya
ORciscoiosMatch12.3
ORciscoiosMatch12.3b
ORciscoiosMatch12.3bc
ORciscoiosMatch12.3bw
ORciscoiosMatch12.3jk
ORciscoiosMatch12.3t
ORciscoiosMatch12.3tpc
ORciscoiosMatch12.3xa
ORciscoiosMatch12.3xb
ORciscoiosMatch12.3xc
ORciscoiosMatch12.3xd
ORciscoiosMatch12.3xe
ORciscoiosMatch12.3xf
ORciscoiosMatch12.3xg
ORciscoiosMatch12.3xi
ORciscoiosMatch12.3xj
ORciscoiosMatch12.3xk
ORciscoiosMatch12.3xl
ORciscoiosMatch12.3xq
ORciscoiosMatch12.3xr
ORciscoiosMatch12.3xs
ORciscoiosMatch12.3xu
ORciscoiosMatch12.3xw
ORciscoiosMatch12.3xx
ORciscoiosMatch12.3xz
ORciscoiosMatch12.3ya
ORciscoiosMatch12.3yj
ORciscoiosMatch12.3yq
ORciscoiosMatch12.3ys
ORciscoiosMatch12.3yt
ORciscoiosMatch12.3yu
ORciscoiosMatch12.3yx
ORciscoiosMatch12.3yz
ORciscoiosMatch12.3za
ORciscoiosMatch12.4
ORciscoiosMatch12.4gc
ORciscoiosMatch12.4jx
ORciscoiosMatch12.4md
ORciscoiosMatch12.4mda
ORciscoiosMatch12.4mdb
ORciscoiosMatch12.4mr
ORciscoiosMatch12.4mra
ORciscoiosMatch12.4mrb
ORciscoiosMatch12.4t
ORciscoiosMatch12.4xa
ORciscoiosMatch12.4xb
ORciscoiosMatch12.4xd
ORciscoiosMatch12.4xf
ORciscoiosMatch12.4xg
ORciscoiosMatch12.4xl
ORciscoiosMatch12.4xm
ORciscoiosMatch12.4xn
ORciscoiosMatch12.4xp
ORciscoiosMatch12.4xq
ORciscoiosMatch12.4xr
ORciscoiosMatch12.4xt
ORciscoiosMatch12.4xw
ORciscoiosMatch12.4xy
ORciscoiosMatch12.4xz
ORciscoiosMatch12.4ya
ORciscoiosMatch12.4yb
ORciscoiosMatch12.4yd
ORciscoiosMatch12.4ye
ORciscoiosMatch12.4yg
ORciscoiosMatch15.0m
ORciscoiosMatch15.0mr
ORciscoiosMatch15.0mra
ORciscoiosMatch15.0s
ORciscoiosMatch15.0sa
ORciscoiosMatch15.0sg
ORciscoiosMatch15.0xa
ORciscoiosMatch15.0xo
ORciscoiosMatch15.1ey
ORciscoiosMatch15.1gc
ORciscoiosMatch15.1m
ORciscoiosMatch15.1s
ORciscoiosMatch15.1t
ORciscoiosMatch15.1xb
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:ios_xe | cisco ios xe | eq | 3.1.0sg |
| cisco:ios_xe | cisco ios xe | eq | 3.1.1sg |
Related
prion
prion
Memory corruption
2011-10-03 23:55:00
nvd
nvd
CVE-2011-3280
2011-10-03 23:55:03
hackerone
hackerone
Gratipay: UDP port 5060 (SIP) Open
2016-02-16 19:34:33
cvelist
cvelist
CVE-2011-3280
2022-10-03 16:15:08
nessus
nessus
securityvulns
securityvulns
Cisco Security Advisory: Cisco IOS Software Network Address Translation Vulnerabilities
2011-10-02 00:00:00
Cisco IOS multiple security vulnerabilities
2011-10-02 00:00:00
cisco
cisco
Cisco IOS Software Network Address Translation Vulnerabilities
2011-09-28 16:00:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.3 High
AI Score
Confidence
High
7.8 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
51.9%
Related for CVE-2011-3280