Lucene search

[email protected]CVE-2015-0709

HistoryApr 29, 2015 - 1:59 a.m.

CVE-2015-0709

2015-04-2901:59:01

CWE-399

[email protected]

web.nvd.nist.gov

cisco

ios

vulnerability

denial of service

radius

packet crafting

nvd

cve-2015-0709

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.0%

JSON

Cisco IOS 15.5S and IOS XE allow remote authenticated users to cause a denial of service (device crash) by leveraging knowledge of the RADIUS secret and sending crafted RADIUS packets, aka Bug ID CSCur21348.

Affected configurations

NVD

Node

ciscoios_xeMatch-

Node

ciscoiosMatch15.5\(3\)s

ciscoiosMatch15.5s

CPENameOperatorVersion
cisco:ios_xecisco ios xeeq-

CPE	Name	Operator	Version
cisco:ios_xe	cisco ios xe	eq	-

References

tools.cisco.com/security/center/viewAlert.x?alertId=38544

www.securitytracker.com/id/1032211

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.0%

JSON

Related for CVE-2015-0709

cisco1 prion1 cvelist1 nvd1