CVE-2013-5472 (GCVE-0-2013-5472)

Vulnerability from cvelistv5 – Published: 2013-09-27 10:00 – Updated: 2024-09-16 17:07
VLAI?
Summary
The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://tools.cisco.com/security/center/content/Ci… vendor-advisoryx_refsource_CISCO
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:15:20.324Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20130925 Cisco IOS Software Multicast Network Time Protocol Denial of Service Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2013-09-27T10:00:00Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20130925 Cisco IOS Software Multicast Network Time Protocol Denial of Service Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2013-5472",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20130925 Cisco IOS Software Multicast Network Time Protocol Denial of Service Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2013-5472",
    "datePublished": "2013-09-27T10:00:00Z",
    "dateReserved": "2013-08-22T00:00:00Z",
    "dateUpdated": "2024-09-16T17:07:47.557Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C798B993-8521-4C5D-88AF-2D509DBAC2AF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"127BD97D-56A0-4B75-9A19-CC499965B53D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4A1D6AEB-26F3-4BD9-A4CA-3D54CCF158F8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"87B35652-621F-48DB-84FF-E214D42AA799\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E216416-E3ED-437D-A725-2297DD86EF3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E8F3444-17E3-48A5-BEC1-97967F7E4EA3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"539E369A-299B-4CDE-940F-C853E08439B2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"39120E68-F456-4035-8B28-64943CDDCFD2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"57F6EF3B-2F31-4449-9B2A-9114D41BBC6A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D1E6D907-4B38-4046-BF4F-C7DFA36F55E4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D0B52CA-3834-4435-A3E1-9684A41E6405\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5976253B-339F-49C3-A538-653901E85EFA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"838C42B4-6D72-4EE5-A0F0-87E60D73A44A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB06F1BF-E186-48EA-BAE2-1B76DB16BC3C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6ECECC55-C937-45B7-ABC9-1DA44D1DBED8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23AD1406-D2E4-4517-BF3E-A87C1FA8AC7E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.5.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6D203439-1A4B-4805-8A15-5A33C612A5B4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2DC46EA-C766-4EBA-B686-29B3B23F0155\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"71A41531-FBC0-41DD-9965-8CAFA30488AE\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.6.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"310BA9E3-8175-4220-9FC3-48390C994174\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:2.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B837418-4855-44BE-BA6F-0840864481A4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.0s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C5A13401-2660-483E-89A5-6420B5866BB8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.0sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA5F84EF-1C19-4AB3-BD01-A3DE47B2A46A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.1s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"77FC74E2-2510-40F5-BB2B-11608B844E28\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.1sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E021FDA-0D92-4A81-8721-EED507426922\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.2s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3C69E845-700C-4250-B528-9482A5362F61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.3s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"389D6E60-F6AB-40B8-B894-CE97BF13AE63\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.1.4s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A40EA0A-1642-4950-9943-20C1888C18D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.00.xo.15.0\\\\(2\\\\)xo:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7F018C7-4BC5-443E-815E-481C805F3612\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.0s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"621845E0-E885-46E4-929D-55DBE43DC97F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.0sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86C0900A-1354-4A20-B5ED-8C005BCE4D74\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.0xo:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6256C79-DBDA-4ED7-AA3B-DE78B8C387B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.1s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"429F3E17-5C65-4C91-8881-AAEAA00BCD44\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.1sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9F5B811A-AAAD-49C0-8FC2-5C79078BA6E8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.2s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F47E76FF-DE36-463D-B610-A99C90AF7B91\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.2sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3104D911-5FFC-4605-B234-6FD40A206DC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.3sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC787C70-6540-4AF7-9F05-8FD86284091E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.2.4sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC716D3D-5C37-4E36-8F6B-53801DC7225E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.3.0s:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BEF8A6EC-3C45-4CDB-81B5-4D50CD5C4087\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios_xe:3.3.0sg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A52C1850-27F7-40C8-BA26-660D160AD163\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F86F790-6247-42F2-9487-3D60A2842F52\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F2F9EC5-EDA2-4C99-BBF1-2F2C92AACE95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E4BC49F2-3DCB-45F0-9030-13F6415EE178\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0668C45B-9D25-424B-B876-C1721BFFE5DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9D4D8C72-E7BB-40BF-9AE5-622794D63E09\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EB41294E-F3DF-4F1E-A4C8-E90B21A88836\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226.\"}, {\"lang\": \"es\", \"value\": \"La implementaci\\u00f3n NTP en Cisco IOS 12.0 hasta 12.4 y 15.0 hasta 15.1, e IOS XE 2.1 hasta 3.3, no maneja apropiadamente la encapsulaci\\u00f3n de paquetes multicast NTP en los mensajes MSDP SA, lo que permite a un atacante remoto causar una denegaci\\u00f3n de servicio (recarga del dispositivo) aprovechando una relaci\\u00f3n \\\"peer\\\" MSDP, tambien conocido como Bug ID CSCuc81226.\"}]",
      "id": "CVE-2013-5472",
      "lastModified": "2024-11-21T01:57:32.660",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.1, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2013-09-27T10:08:04.180",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2013-5472\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2013-09-27T10:08:04.180\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The NTP implementation in Cisco IOS 12.0 through 12.4 and 15.0 through 15.1, and IOS XE 2.1 through 3.3, does not properly handle encapsulation of multicast NTP packets within MSDP SA messages, which allows remote attackers to cause a denial of service (device reload) by leveraging an MSDP peer relationship, aka Bug ID CSCuc81226.\"},{\"lang\":\"es\",\"value\":\"La implementaci\u00f3n NTP en Cisco IOS 12.0 hasta 12.4 y 15.0 hasta 15.1, e IOS XE 2.1 hasta 3.3, no maneja apropiadamente la encapsulaci\u00f3n de paquetes multicast NTP en los mensajes MSDP SA, lo que permite a un atacante remoto causar una denegaci\u00f3n de servicio (recarga del dispositivo) aprovechando una relaci\u00f3n \\\"peer\\\" MSDP, tambien conocido como Bug ID CSCuc81226.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:C\",\"baseScore\":7.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C798B993-8521-4C5D-88AF-2D509DBAC2AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"127BD97D-56A0-4B75-9A19-CC499965B53D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A1D6AEB-26F3-4BD9-A4CA-3D54CCF158F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87B35652-621F-48DB-84FF-E214D42AA799\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E216416-E3ED-437D-A725-2297DD86EF3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E8F3444-17E3-48A5-BEC1-97967F7E4EA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"539E369A-299B-4CDE-940F-C853E08439B2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39120E68-F456-4035-8B28-64943CDDCFD2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.3.1t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57F6EF3B-2F31-4449-9B2A-9114D41BBC6A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1E6D907-4B38-4046-BF4F-C7DFA36F55E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D0B52CA-3834-4435-A3E1-9684A41E6405\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5976253B-339F-49C3-A538-653901E85EFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"838C42B4-6D72-4EE5-A0F0-87E60D73A44A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB06F1BF-E186-48EA-BAE2-1B76DB16BC3C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ECECC55-C937-45B7-ABC9-1DA44D1DBED8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23AD1406-D2E4-4517-BF3E-A87C1FA8AC7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D203439-1A4B-4805-8A15-5A33C612A5B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2DC46EA-C766-4EBA-B686-29B3B23F0155\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71A41531-FBC0-41DD-9965-8CAFA30488AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"310BA9E3-8175-4220-9FC3-48390C994174\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:2.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B837418-4855-44BE-BA6F-0840864481A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C5A13401-2660-483E-89A5-6420B5866BB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.0sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA5F84EF-1C19-4AB3-BD01-A3DE47B2A46A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77FC74E2-2510-40F5-BB2B-11608B844E28\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.1sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E021FDA-0D92-4A81-8721-EED507426922\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C69E845-700C-4250-B528-9482A5362F61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"389D6E60-F6AB-40B8-B894-CE97BF13AE63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.1.4s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A40EA0A-1642-4950-9943-20C1888C18D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.00.xo.15.0\\\\(2\\\\)xo:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7F018C7-4BC5-443E-815E-481C805F3612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"621845E0-E885-46E4-929D-55DBE43DC97F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.0sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86C0900A-1354-4A20-B5ED-8C005BCE4D74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.0xo:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6256C79-DBDA-4ED7-AA3B-DE78B8C387B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"429F3E17-5C65-4C91-8881-AAEAA00BCD44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.1sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9F5B811A-AAAD-49C0-8FC2-5C79078BA6E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F47E76FF-DE36-463D-B610-A99C90AF7B91\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.2sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3104D911-5FFC-4605-B234-6FD40A206DC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.3sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC787C70-6540-4AF7-9F05-8FD86284091E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.4sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC716D3D-5C37-4E36-8F6B-53801DC7225E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.3.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEF8A6EC-3C45-4CDB-81B5-4D50CD5C4087\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.3.0sg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A52C1850-27F7-40C8-BA26-660D160AD163\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F86F790-6247-42F2-9487-3D60A2842F52\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F2F9EC5-EDA2-4C99-BBF1-2F2C92AACE95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4BC49F2-3DCB-45F0-9030-13F6415EE178\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0668C45B-9D25-424B-B876-C1721BFFE5DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D4D8C72-E7BB-40BF-9AE5-622794D63E09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EB41294E-F3DF-4F1E-A4C8-E90B21A88836\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ntp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.