Описание
AppNav in Cisco IOS XE 3.8 through 3.10 before 3.10.3S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via a crafted TCP packet, aka Bug ID CSCuo53622.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.8s_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02863
Низкий
7.8 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
больше 3 лет назад
AppNav in Cisco IOS XE 3.8 through 3.10 before 3.10.3S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to execute arbitrary code or cause a denial of service (device reload) via a crafted TCP packet, aka Bug ID CSCuo53622.
EPSS
Процентиль: 86%
0.02863
Низкий
7.8 High
CVSS2
Дефекты
CWE-20