Lucene search

[email protected]CVE-2013-1143

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-1143

2022-10-0316:14:49

CWE-119

[email protected]

web.nvd.nist.gov

cve-2013-1143

rsvp protocol

cisco ios

ios xe

denial of service

memory access

device reload

bug id csctg39957

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.0%

JSON

The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957.

Affected configurations

NVD

Node

ciscoiosMatch12.2

ciscoiosMatch15.0

ciscoiosMatch15.0\(1\)se

ciscoiosMatch15.1

ciscoiosMatch15.2

ciscoiosMatch15.3

Node

ciscoios_xeMatch3.1.0s

ciscoios_xeMatch3.1.1s

ciscoios_xeMatch3.1.2s

ciscoios_xeMatch3.1.3s

ciscoios_xeMatch3.1.4s

ciscoios_xeMatch3.2.0s

ciscoios_xeMatch3.2.1s

ciscoios_xeMatch3.2.2s

ciscoios_xeMatch3.3.0s

ciscoios_xeMatch3.3.1s

ciscoios_xeMatch3.3.2s

ciscoios_xeMatch3.3.3s

ciscoios_xeMatch3.4.0s

ciscoios_xeMatch3.4.1s

ciscoios_xeMatch3.4.2s

ciscoios_xeMatch3.4.3s

Node

ciscoios_xeMatch3.5.0s

ciscoios_xeMatch3.5.1s

ciscoios_xeMatch3.5.2s

CPENameOperatorVersion
cisco:ioscisco ioseq12.2
cisco:ioscisco ioseq15.0
cisco:ioscisco ioseq15.0\(1\)se
cisco:ioscisco ioseq15.1
cisco:ioscisco ioseq15.2
cisco:ioscisco ioseq15.3

CPE	Name	Operator	Version
cisco:ios	cisco ios	eq	12.2
cisco:ios	cisco ios	eq	15.0
cisco:ios	cisco ios	eq	15.0\(1\)se
cisco:ios	cisco ios	eq	15.1
cisco:ios	cisco ios	eq	15.2
cisco:ios	cisco ios	eq	15.3