Описание
Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers to cause a denial of service (control-plane protocol outage) via crafted fragmented packets, aka Bug ID CSCux26791.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:o:cisco:ios_xr:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.1.k9sec:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.4:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.5:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.3.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.3.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.3.2:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-399
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers to cause a denial of service (control-plane protocol outage) via crafted fragmented packets, aka Bug ID CSCux26791.
EPSS
Процентиль: 73%
0.00743
Низкий
7.5 High
CVSS3
7.8 High
CVSS2
Дефекты
CWE-399