Lucene search

[email protected]CVE-2013-6686

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-6686

2022-10-0316:14:52

CWE-20

[email protected]

web.nvd.nist.gov

cisco

ios

ssl

vpn

denial of service

crafted packets

dtls

security vulnerability

nvd

cve-2013-6686

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.1%

JSON

The SSL VPN implementation in Cisco IOS 15.3(1)T2 and earlier allows remote authenticated users to cause a denial of service (interface queue wedge) via crafted DTLS packets in an SSL session, aka Bug IDs CSCuh97409 and CSCud90568.

Affected configurations

NVD

Node

ciscoiosRange≤15.3

ciscoiosMatch15.0

ciscoiosMatch15.0\(1\)se

ciscoiosMatch15.1

ciscoiosMatch15.2

CPENameOperatorVersion
cisco:ioscisco iosle15.3
cisco:ioscisco ioseq15.0
cisco:ioscisco ioseq15.0\(1\)se
cisco:ioscisco ioseq15.1
cisco:ioscisco ioseq15.2

CPE	Name	Operator	Version
cisco:ios	cisco ios	le	15.3
cisco:ios	cisco ios	eq	15.0
cisco:ios	cisco ios	eq	15.0\(1\)se
cisco:ios	cisco ios	eq	15.1
cisco:ios	cisco ios	eq	15.2

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6686

tools.cisco.com/security/center/viewAlert.x?alertId=31757

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

45.1%

JSON

Related for CVE-2013-6686

prion1 cisco1 cvelist1 nvd1