Kaspersky LabKLA10510KLA10510 Multiple vulnerabilities in Cisco IOS
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:P/A:C
7.8 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.0%
An unspecified vulnerabilities were found in multiple versions of Cisco IOS. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed packets or messages.
Original advisories
Related products
CVE list
CVE-2015-0645 critical
CVE-2015-0672 critical
CVE-2015-0646 critical
CVE-2015-0647 critical
CVE-2015-0638 high
CVE-2015-0637 critical
CVE-2015-0636 critical
CVE-2015-0635 critical
CVE-2015-0649 critical
CVE-2015-0641 critical
CVE-2015-0640 critical
CVE-2015-0639 critical
CVE-2015-0642 critical
CVE-2015-0644 critical
CVE-2015-0648 critical
CVE-2015-0643 critical
CVE-2015-0650 critical
Solution
Apply the appropriate updates or enforce safety of vulnerable systems with firewall and access restrictions.
Impacts
- ACE
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
- DoS
Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.
Affected Products
- IOS XR version 5.2.2 on ASR 9000 devicesIOS versions 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4IOS XE 2 all versionsIOS XE versions 3.3 XO, 3.3 SG, 3.4 SGIOS XE 3.2 E versions earlier than 3.7.1 EIOS XE 3 earlier than 3.13.3 SIOS XE 3.14 before 3.14.0 SIOS XE 3.15 before 3.15.0 S
Related
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:P/I:P/A:C
7.8 High
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.0%