Design/Logic Flaw

2015-03-2610:59:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.2%

JSON

The Layer 4 Redirect (L4R) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.2S, 3.13 before 3.13.1S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via malformed (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCuq59131.

CPENameOperatorVersion
ios_xeeq3.11.1152
ios_xeeq3.2.1150
ios_xeeq3.1.1150
ios_xeeq3.1.1152
ios_xeeq3.13.1150
ios_xeeq3.4.1151
ios_xeeq3.10.115097
ios_xeeq3.3.1151
ios_xeeq3.1.1153
ios_xeeq3.4.1150

Name	Operator	Version
ios_xe	eq	3.11.1152
ios_xe	eq	3.2.1150
ios_xe	eq	3.1.1150
ios_xe	eq	3.1.1152
ios_xe	eq	3.13.1150
ios_xe	eq	3.4.1151
ios_xe	eq	3.10.115097
ios_xe	eq	3.3.1151
ios_xe	eq	3.1.1153
ios_xe	eq	3.4.1150