exploitDog

CVE-2012-5032

Опубликовано: 23 апр. 2014

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the discarding of this traffic, by arranging for an arbitrary device to become a cluster member, aka Bug ID CSCub93641.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

Версия до 15.1\(1\)sy2 (включая)

cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:15.1\(1\)sy:*:*:*:*:*:*:*

cpe:2.3:o:cisco:ios:15.1\(1\)sy1:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00506

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-qpqj-275w-f6mr

github

больше 3 лет назад

The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the discarding of this traffic, by arranging for an arbitrary device to become a cluster member, aka Bug ID CSCub93641.

EPSS

Процентиль: 66%

0.00506

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-287