CVE-2010-4684

Опубликовано: 07 янв. 2011

Источник: nvd

CVSS2: 7.1

EPSS Низкий

Описание

Cisco IOS before 15.0(1)XA1, when certain TFTP debugging is enabled, allows remote attackers to cause a denial of service (device crash) via a TFTP copy over IPv6, aka Bug ID CSCtb28877.

Ссылки

http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf
Release Notes
Vendor Advisory
http://www.securityfocus.com/bid/45769
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/64587
Third Party Advisory
VDB Entry
http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf
Release Notes
Vendor Advisory
http://www.securityfocus.com/bid/45769
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/64587
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

Версия до 15.0\(1\)xa1 (исключая)

EPSS

Процентиль: 71%

0.00679

Низкий

7.1 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-773m-r8xm-r4mq

github

больше 3 лет назад