Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-5552
cisco
ios
content services gateway
csg
cve-2013-5552
security vulnerability
remote attack
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
6.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
54.9%
Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the “parse error drop” feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143.
Affected configurations
Node
ciscoiosRange≤12.4\(24\)mdb14
ORciscoiosMatch12.4\(24\)md
ORciscoiosMatch12.4\(24\)md1
ORciscoiosMatch12.4\(24\)md2
ORciscoiosMatch12.4\(24\)md3
ORciscoiosMatch12.4\(24\)md4
ORciscoiosMatch12.4\(24\)md5
ORciscoiosMatch12.4\(24\)md5a
ORciscoiosMatch12.4\(24\)md6
ORciscoiosMatch12.4\(24\)md7
ORciscoiosMatch12.4\(24\)md8
ORciscoiosMatch12.4\(24\)md9
ORciscoiosMatch12.4\(24\)mda6
ORciscoiosMatch12.4\(24\)mda7
ORciscoiosMatch12.4\(24\)mda8
ORciscoiosMatch12.4\(24\)mda9
ORciscoiosMatch12.4\(24\)mda10
ORciscoiosMatch12.4\(24\)mda11
ORciscoiosMatch12.4\(24\)mda12
ORciscoiosMatch12.4\(24\)mda13
ORciscoiosMatch12.4\(24\)mdb10
ORciscoiosMatch12.4\(24\)mdb11
ORciscoiosMatch12.4\(24\)mdb12
ORciscoiosMatch12.4\(24\)mdb13
ORciscoiosMatch12.4mda12
ciscocontent_services_gatewayMatch-
Related
cisco
cisco
Cisco Content Services Gateway Traffic Bypass Vulnerability
2013-11-11 21:16:13
cvelist
cvelist
CVE-2013-5552
2022-10-03 16:14:54
prion
prion
Design/Logic Flaw
2013-11-13 15:55:00
nvd
nvd
CVE-2013-5552
2013-11-13 15:55:03
6.4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
6.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
54.9%
Related for CVE-2013-5552