CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
55.7%
The HTTP server in Cisco IOS on Catalyst switches does not properly handle TCP socket events, which allows remote attackers to cause a denial of service (device crash) via crafted packets on TCP port (1) 80 or (2) 443, aka Bug ID CSCuc53853.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | - | cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:* |
cisco | catalyst_2820 | * | cpe:2.3:h:cisco:catalyst_2820:*:*:*:*:*:*:*:* |
cisco | catalyst_2820 | 9.0_0.07 | cpe:2.3:h:cisco:catalyst_2820:9.0_0.07:*:*:*:*:*:*:* |
cisco | catalyst_2900 | * | cpe:2.3:h:cisco:catalyst_2900:*:*:*:*:*:*:*:* |
cisco | catalyst_2900 | lre_xl | cpe:2.3:h:cisco:catalyst_2900:lre_xl:*:*:*:*:*:*:* |
cisco | catalyst_2900 | xl | cpe:2.3:h:cisco:catalyst_2900:xl:*:*:*:*:*:*:* |
cisco | catalyst_2900_vlan | * | cpe:2.3:h:cisco:catalyst_2900_vlan:*:*:*:*:*:*:*:* |
cisco | catalyst_2900xl | * | cpe:2.3:h:cisco:catalyst_2900xl:*:*:*:*:*:*:*:* |
cisco | catalyst_2901 | * | cpe:2.3:h:cisco:catalyst_2901:*:*:*:*:*:*:*:* |
cisco | catalyst_2902 | * | cpe:2.3:h:cisco:catalyst_2902:*:*:*:*:*:*:*:* |