CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
88.2%
Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3), 4.0(0) to 4.0(2), and earlier versions, allows remote attackers to cause a denial of service (control card reset) via a large number of TCP connections with an invalid response instead of the final ACK (TCP-ACK).
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | optical_networking_systems_software | 1.0 | cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 1.1 | cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 1.1(0) | cpe:2.3:a:cisco:optical_networking_systems_software:1.1\(0\):*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 1.1(1) | cpe:2.3:a:cisco:optical_networking_systems_software:1.1\(1\):*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 1.3(0) | cpe:2.3:a:cisco:optical_networking_systems_software:1.3\(0\):*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 2.3(5) | cpe:2.3:a:cisco:optical_networking_systems_software:2.3\(5\):*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 3.0 | cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 3.1.0 | cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 3.2 | cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:* |
cisco | optical_networking_systems_software | 3.2.0 | cpe:2.3:a:cisco:optical_networking_systems_software:3.2.0:*:*:*:*:*:*:* |