Описание
The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to cause a denial of service (watchdog timeout and TNC reset) via a flood of network traffic, aka Bug ID CSCud97155.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.2.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:cisco_ons_15454_system_software:9.6:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ons_15454e_optical_transport_platform:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:cisco:ons_15454:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ons_15454_multiservice_transport_platform:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ons_15454_sdh_multiservice_provisioning_platform:*:*:*:*:*:*:*:*
cpe:2.3:h:cisco:ons_15454_sonet_multiservice_provisioning_platform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00687
Низкий
5 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
The tNetTaskLimit process on the Transport Node Controller (TNC) on Cisco ONS 15454 devices with software 9.6 and earlier does not properly prioritize health pings, which allows remote attackers to cause a denial of service (watchdog timeout and TNC reset) via a flood of network traffic, aka Bug ID CSCud97155.
EPSS
Процентиль: 71%
0.00687
Низкий
5 Medium
CVSS2
Дефекты
CWE-20