VAR-201303-0399
Vulnerability from variot - Updated: 2023-12-18 12:52The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76 and earlier allow remote attackers to cause a denial of service (SSL/TLS layer outage) via malformed (1) SSH or (2) SSL packets, aka Bug ID CSCua30246. The SSH implementation in multiple Cisco products contains a denial-of-service (DoS) vulnerability. Hisashi Kojima, Masahiro Nakada of Fujitsu Laboratories Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.A remote attacker may be able to cause a denial-of-service (DoS). Cisco Small Business Switches is a small commercial switch device from Cisco. Cisco Small Business Switches has an unspecified error in handling SSH or SSL messages, allowing an attacker to exploit a vulnerability to send a specially crafted message to crash the service, causing a denial of service attack. Successful exploits may allow an attacker to cause denial-of-service conditions. This issue is tracked by Cisco Bug ID CSCua30246
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201303-0399",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-28"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf200-24p"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-08"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-18"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-24p"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500x-48"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-28p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-08"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-26"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-52p"
},
{
"model": "200 series smart switches software",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "1.2.7.76"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-50p"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf200-24"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500x-48p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf302-08p"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500-52"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-08p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-28mp"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf500-24p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-24mp"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500x-24"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf302-08"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf500-48"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-10mp"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-10"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf302-08mp"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-52mp"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500x-24p"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500-28"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500-28p"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf200-48p"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf500-48p"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg500-52p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-24"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-52"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-48p"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-26p"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-20"
},
{
"model": "500 series stackable managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf500-24"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf200-48"
},
{
"model": "200 series smart switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg200-50"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sf300-48"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-10sfp"
},
{
"model": "300 series managed switches",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "sg300-10p"
},
{
"model": "small business 200 series smart switch",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "(1.2.7.76 and prior)"
},
{
"model": "small business 200 series smart switch software",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "1.2.7.76 and prior"
},
{
"model": "small business 300 series managed switch",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "(1.2.7.76 and prior)"
},
{
"model": "small business 500 series stackable managed switch",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "(1.2.7.76 and prior)"
},
{
"model": "small business managed switches series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "300"
},
{
"model": "small business smart switches series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "200"
},
{
"model": "small business stackable managed series",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "500"
},
{
"model": "200 series smart switches software",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1.2.7.76"
},
{
"model": "small business series stackable managed switch",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "5001.2.7.76"
},
{
"model": "small business series managed switch",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "3001.2.7.76"
},
{
"model": "small business series smart switch",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "2001.2.7.76"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "BID",
"id": "58374"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:200_series_smart_switches_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.2.7.76",
"vulnerable": false
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-50p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sf200-24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-26:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-50:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sf200-24p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-18:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-26p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sf200-48:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sf200-48p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-08:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:200_series_smart_switches:sg200-08p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:200_series_smart_switches_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.2.7.76",
"vulnerable": false
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-10sfp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf302-08mp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-24p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-52:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-24mp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-28mp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf302-08p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-48:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-20:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-28p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-52p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-52mp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-08:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf302-08:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sf300-48p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-10:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-10p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:300_series_managed_switches:sg300-10mp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:cisco:200_series_smart_switches_software:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.2.7.76",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sf500-24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sf500-48:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500x-24p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500x-48p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sf500-24p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sf500-48p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500x-48:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500-28:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500-28p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500-52:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500-52p:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:h:cisco:500_series_stackable_managed_switches:sg500x-24:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2013-1154"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Hisashi Kojima and Masahiro Nakada, Fujitsu Laboratories LTD",
"sources": [
{
"db": "BID",
"id": "58374"
}
],
"trust": 0.3
},
"cve": "CVE-2013-1154",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "IPA",
"availabilityImpact": "Complete",
"baseScore": 7.8,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "JVNDB-2013-000017",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-61156",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "NVD",
"id": "CVE-2013-1154",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "IPA",
"id": "JVNDB-2013-000017",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201303-137",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-61156",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61156"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The Cisco Small Business 200 Series Smart Switch 1.2.7.76 and earlier, Small Business 300 Series Managed Switch 1.2.7.76 and earlier, and Small Business 500 Series Stackable Managed Switch 1.2.7.76 and earlier allow remote attackers to cause a denial of service (SSL/TLS layer outage) via malformed (1) SSH or (2) SSL packets, aka Bug ID CSCua30246. The SSH implementation in multiple Cisco products contains a denial-of-service (DoS) vulnerability. Hisashi Kojima, Masahiro Nakada of Fujitsu Laboratories Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.A remote attacker may be able to cause a denial-of-service (DoS). Cisco Small Business Switches is a small commercial switch device from Cisco. Cisco Small Business Switches has an unspecified error in handling SSH or SSL messages, allowing an attacker to exploit a vulnerability to send a specially crafted message to crash the service, causing a denial of service attack. \nSuccessful exploits may allow an attacker to cause denial-of-service conditions. \nThis issue is tracked by Cisco Bug ID CSCua30246",
"sources": [
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "BID",
"id": "58374"
},
{
"db": "VULHUB",
"id": "VHN-61156"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2013-1154",
"trust": 3.4
},
{
"db": "JVN",
"id": "JVN05132866",
"trust": 2.5
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017",
"trust": 2.5
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2013-01689",
"trust": 0.6
},
{
"db": "JVN",
"id": "JVN#05132866",
"trust": 0.6
},
{
"db": "SECUNIA",
"id": "52476",
"trust": 0.6
},
{
"db": "BID",
"id": "58374",
"trust": 0.4
},
{
"db": "VULHUB",
"id": "VHN-61156",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "VULHUB",
"id": "VHN-61156"
},
{
"db": "BID",
"id": "58374"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"id": "VAR-201303-0399",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "VULHUB",
"id": "VHN-61156"
}
],
"trust": 1.0863507666666665
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
}
]
},
"last_update_date": "2023-12-18T12:52:08.191000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Cisco Small Business Switches SSH Packet Processing Denial of Service Vulnerability",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=27502"
},
{
"title": "Patch for Cisco Small Business Switches Denial of Service Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/32711"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-399",
"trust": 1.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-61156"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.6,
"url": "http://tools.cisco.com/security/center/viewalert.x?alertid=27502"
},
{
"trust": 2.5,
"url": "http://jvn.jp/en/jp/jvn05132866/index.html"
},
{
"trust": 1.7,
"url": "http://jvndb.jvn.jp/jvndb/jvndb-2013-000017"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1154"
},
{
"trust": 0.8,
"url": "http://www.ipa.go.jp/about/press/20130307.html"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1154"
},
{
"trust": 0.6,
"url": "http://secunia.com/advisories/52476"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "VULHUB",
"id": "VHN-61156"
},
{
"db": "BID",
"id": "58374"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "VULHUB",
"id": "VHN-61156"
},
{
"db": "BID",
"id": "58374"
},
{
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-03-11T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"date": "2013-03-07T00:00:00",
"db": "VULHUB",
"id": "VHN-61156"
},
{
"date": "2013-03-06T00:00:00",
"db": "BID",
"id": "58374"
},
{
"date": "2013-03-07T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"date": "2013-03-07T20:55:02.313000",
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"date": "2013-03-08T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2013-03-11T00:00:00",
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"date": "2013-03-08T00:00:00",
"db": "VULHUB",
"id": "VHN-61156"
},
{
"date": "2013-03-06T00:00:00",
"db": "BID",
"id": "58374"
},
{
"date": "2013-03-11T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2013-000017"
},
{
"date": "2013-03-08T16:24:54.793000",
"db": "NVD",
"id": "CVE-2013-1154"
},
{
"date": "2013-03-08T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco Small Business Switches Denial of Service Vulnerability",
"sources": [
{
"db": "CNVD",
"id": "CNVD-2013-01689"
},
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
],
"trust": 1.2
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "resource management error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201303-137"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…