Lucene search
HistoryApr 29, 2015 - 1:59 a.m.
CVE-2015-0708
cisco
ios
ios xe
remote attackers
denial of service
dhcpv6
bug id cscur29956
6.1 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
6.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
52.3%
Cisco IOS 15.4S, 15.4SN, and 15.5S and IOS XE 3.13S and 3.14S allow remote attackers to cause a denial of service (device crash) by including an IA_NA option in a DHCPv6 Solicit message on the local network, aka Bug ID CSCur29956.
Affected configurations
Node
ciscoios_xeMatch3.13s.0
ORciscoios_xeMatch3.13s.1
ORciscoios_xeMatch3.14s.0
Node
ciscoiosMatch15.4\(3\)s
ORciscoiosMatch15.4\(3\)s1
ORciscoiosMatch15.4\(3\)sn1
ORciscoiosMatch15.4s
ORciscoiosMatch15.4sn
ORciscoiosMatch15.5\(1\)s
ORciscoiosMatch15.5s
| CPE | Name | Operator | Version |
|---|---|---|---|
| cisco:ios_xe | cisco ios xe | eq | 3.13s.0 |
| cisco:ios_xe | cisco ios xe | eq | 3.13s.1 |
| cisco:ios_xe | cisco ios xe | eq | 3.14s.0 |
Related
cvelist
cvelist
CVE-2015-0708
2015-04-29 01:00:00
nessus
nessus
Cisco IOS XE DHCPv6 Server DoS
2015-05-20 00:00:00
prion
prion
Design/Logic Flaw
2015-04-29 01:59:00
cisco
cisco
nvd
nvd
CVE-2015-0708
2015-04-29 01:59:00
6.1 Medium
CVSS2
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:A/AC:L/Au:N/C:N/I:N/A:C
6.7 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
52.3%
Related for CVE-2015-0708