Design/Logic Flaw

2017-02-0307:59:00

PRIOn knowledge base

www.prio-n.com

6.6 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.2%

JSON

A vulnerability in the implementation of Common Industrial Protocol (CIP) functionality in Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to a system memory leak. More Information: CSCvc54788. Known Affected Releases: 15.2(5.4.32i)E2. Known Fixed Releases: 15.2(5.4.62i)E2.

CPENameOperatorVersion
industrial_ethernet_2000_series_firmwareeq<= 15.25.4.32ie2

CPE	Name	Operator	Version
	industrial_ethernet_2000_series_firmware	eq	<= 15.25.4.32ie2

References

www.securityfocus.com/bid/95946

www.securitytracker.com/id/1037771

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc1