Описание
Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote attackers to cause a denial of service (disk consumption) by making many SSHv1 connections, aka Bug ID CSCtd64417.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:cisco:ios_xr:3.6.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.6.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.6.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.6.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.8.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.8.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.8.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:3.9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00427
Низкий
7.8 High
CVSS2
Дефекты
CWE-399
Связанные уязвимости
github
больше 3 лет назад
Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote attackers to cause a denial of service (disk consumption) by making many SSHv1 connections, aka Bug ID CSCtd64417.
EPSS
Процентиль: 62%
0.00427
Низкий
7.8 High
CVSS2
Дефекты
CWE-399