var-201503-0119
Vulnerability from variot
The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S, when MMON or NBAR is enabled, allows remote attackers to cause a denial of service (device reload) via malformed IPv6 packets with IPv4 UDP encapsulation, aka Bug ID CSCua79665. Cisco IOS is a popular Internet operating system. Cisco IOS XE Software is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to cause an affected device to reload, resulting in a denial of service condition. These issues are being tracked by Cisco Bug IDs CSCuo25741, CSCub68073, CSCua79665 and CSCuq59131. The vulnerability stems from the program's improper handling of IPv6 packets encapsulated in IPv4 UDP packets. The following versions are affected: Cisco IOS XE Release 3.6, Release 3.7 prior to 3.7.1S, Release 3.8 prior to 3.8.0S, Release 3.9 prior to 3.9.0S, Release 3.10 prior to 3.10.0S, Release 3.11 prior to 3.11.0S, Release 3.12.0S prior to Version 3.12, Version 3.13 before 3.13.0S, Version 3.14 before 3.14.0S, Version 3.15 before 3.15.0S
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201503-0119", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s.1", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.6s.0", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s.0", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s.3", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.6s.1", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.6s.2", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s.5", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.7s.2", }, { model: "ios xe", scope: "eq", trust: 1.6, vendor: "cisco", version: "3.6s", }, { model: "ios xe", scope: "eq", trust: 1.4, vendor: "cisco", version: "3.6", }, { model: "ios xe", scope: "eq", trust: 1, vendor: "cisco", version: "3.7s.4", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.11", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.13.0s", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.15.0s", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.14.0s", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.8", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.10", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.9", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.10.0s", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.7.1s", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.12.0s", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.12", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.8.0s", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.15", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.13", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.11.0s", }, { model: "ios xe", scope: "eq", trust: 0.8, vendor: "cisco", version: "3.9.0s", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.14", }, { model: "ios xe", scope: "lt", trust: 0.8, vendor: "cisco", version: "3.7", }, { model: "ios xe 3.13", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.14", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.15", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.7", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.8", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.9.0s)", scope: "eq", trust: 0.6, vendor: "cisco", version: "3.9(<", }, { model: "ios xe 3.10", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.11", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.12", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "ios xe 3.9s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.9s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.9s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.8s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.8s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.8s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.7", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.6", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.5", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.4", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.3", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.7s", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.6s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.6s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.6s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.6s", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.5s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.5s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.5s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.5s", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.6", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.5", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.4", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.3", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.4s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.3s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.3s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.3s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.2s.3", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.2s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.2s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.2s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.6", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.5", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.4", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.3", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.1s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.13s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.12s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.12s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.11s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.11s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.11s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.10s.3", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.10s.2", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.10s.1", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.10s.0a", scope: null, trust: 0.3, vendor: "cisco", version: null, }, { model: "ios xe 3.10s.0", scope: null, trust: 0.3, vendor: "cisco", version: null, }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "BID", id: "73337", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, { db: "CNNVD", id: "CNNVD-201503-568", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.3:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.6s.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.6s.1:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.6s.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.4:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.5:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.6s:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:cisco:ios_xe:3.7s.2:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, ], sources: [ { db: "NVD", id: "CVE-2015-0639", }, ], }, credits: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/credits#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco", sources: [ { db: "BID", id: "73337", }, ], trust: 0.3, }, cve: "CVE-2015-0639", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { acInsufInfo: false, accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "NVD", availabilityImpact: "COMPLETE", baseScore: 7.8, confidentialityImpact: "NONE", exploitabilityScore: 10, impactScore: 6.9, integrityImpact: "NONE", obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "HIGH", trust: 1, userInteractionRequired: false, vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C", version: "2.0", }, { acInsufInfo: null, accessComplexity: "Low", accessVector: "Network", authentication: "None", author: "NVD", availabilityImpact: "Complete", baseScore: 7.8, confidentialityImpact: "None", exploitabilityScore: null, id: "CVE-2015-0639", impactScore: null, integrityImpact: "None", obtainAllPrivilege: null, obtainOtherPrivilege: null, obtainUserPrivilege: null, severity: "High", trust: 0.8, userInteractionRequired: null, vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C", version: "2.0", }, { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "CNVD", availabilityImpact: "COMPLETE", baseScore: 7.8, confidentialityImpact: "NONE", exploitabilityScore: 10, id: "CNVD-2015-02089", impactScore: 6.9, integrityImpact: "NONE", severity: "HIGH", trust: 0.6, vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C", version: "2.0", }, { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "VULHUB", availabilityImpact: "COMPLETE", baseScore: 7.8, confidentialityImpact: "NONE", exploitabilityScore: 10, id: "VHN-78585", impactScore: 6.9, integrityImpact: "NONE", severity: "HIGH", trust: 0.1, vectorString: "AV:N/AC:L/AU:N/C:N/I:N/A:C", version: "2.0", }, ], cvssV3: [], severity: [ { author: "NVD", id: "CVE-2015-0639", trust: 1.8, value: "HIGH", }, { author: "CNVD", id: "CNVD-2015-02089", trust: 0.6, value: "HIGH", }, { author: "CNNVD", id: "CNNVD-201503-568", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-78585", trust: 0.1, value: "HIGH", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "VULHUB", id: "VHN-78585", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, { db: "CNNVD", id: "CNNVD-201503-568", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "The Common Flow Table (CFT) feature in Cisco IOS XE 3.6 and 3.7 before 3.7.1S, 3.8 before 3.8.0S, 3.9 before 3.9.0S, 3.10 before 3.10.0S, 3.11 before 3.11.0S, 3.12 before 3.12.0S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S, when MMON or NBAR is enabled, allows remote attackers to cause a denial of service (device reload) via malformed IPv6 packets with IPv4 UDP encapsulation, aka Bug ID CSCua79665. Cisco IOS is a popular Internet operating system. Cisco IOS XE Software is prone to multiple denial-of-service vulnerabilities. \nAn attacker can exploit these issues to cause an affected device to reload, resulting in a denial of service condition. \nThese issues are being tracked by Cisco Bug IDs CSCuo25741, CSCub68073, CSCua79665 and CSCuq59131. The vulnerability stems from the program's improper handling of IPv6 packets encapsulated in IPv4 UDP packets. The following versions are affected: Cisco IOS XE Release 3.6, Release 3.7 prior to 3.7.1S, Release 3.8 prior to 3.8.0S, Release 3.9 prior to 3.9.0S, Release 3.10 prior to 3.10.0S, Release 3.11 prior to 3.11.0S, Release 3.12.0S prior to Version 3.12, Version 3.13 before 3.13.0S, Version 3.14 before 3.14.0S, Version 3.15 before 3.15.0S", sources: [ { db: "NVD", id: "CVE-2015-0639", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "CNVD", id: "CNVD-2015-02089", }, { db: "BID", id: "73337", }, { db: "VULHUB", id: "VHN-78585", }, ], trust: 2.52, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2015-0639", trust: 3.4, }, { db: "SECTRACK", id: "1031981", trust: 1.1, }, { db: "JVNDB", id: "JVNDB-2015-001945", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201503-568", trust: 0.7, }, { db: "CNVD", id: "CNVD-2015-02089", trust: 0.6, }, { db: "BID", id: "73337", trust: 0.3, }, { db: "VULHUB", id: "VHN-78585", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "VULHUB", id: "VHN-78585", }, { db: "BID", id: "73337", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, { db: "CNNVD", id: "CNNVD-201503-568", }, ], }, id: "VAR-201503-0119", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "VULHUB", id: "VHN-78585", }, ], trust: 0.06999999999999999, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, ], }, last_update_date: "2023-12-18T12:57:48.234000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "37486", trust: 0.8, url: "http://tools.cisco.com/security/center/viewambalert.x?alertid=37486", }, { title: "cisco-sa-20150325-iosxe", trust: 0.8, url: "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150325-iosxe", }, { title: "37826", trust: 0.8, url: "http://tools.cisco.com/security/center/viewalert.x?alertid=37826", }, { title: "cisco-sa-20150325-iosxe", trust: 0.8, url: "http://www.cisco.com/cisco/web/support/jp/112/1128/1128882_cisco-sa-20150325-iosxe-j.html", }, { title: "Cisco IOS XE Common Flow Table (CFT) malformed IPv6 packet handling denial of service vulnerability patch", trust: 0.6, url: "https://www.cnvd.org.cn/patchinfo/show/56798", }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-20", trust: 1.9, }, ], sources: [ { db: "VULHUB", id: "VHN-78585", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 2.6, url: "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20150325-iosxe", }, { trust: 1.1, url: "http://www.securitytracker.com/id/1031981", }, { trust: 0.8, url: "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0639", }, { trust: 0.8, url: "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0639", }, { trust: 0.3, url: "http://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html", }, ], sources: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "VULHUB", id: "VHN-78585", }, { db: "BID", id: "73337", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, { db: "CNNVD", id: "CNNVD-201503-568", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2015-02089", }, { db: "VULHUB", id: "VHN-78585", }, { db: "BID", id: "73337", }, { db: "JVNDB", id: "JVNDB-2015-001945", }, { db: "NVD", id: "CVE-2015-0639", }, { db: "CNNVD", id: "CNNVD-201503-568", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2015-03-31T00:00:00", db: "CNVD", id: "CNVD-2015-02089", }, { date: "2015-03-26T00:00:00", db: "VULHUB", id: "VHN-78585", }, { date: "2015-03-25T00:00:00", db: "BID", id: "73337", }, { date: "2015-03-30T00:00:00", db: "JVNDB", id: "JVNDB-2015-001945", }, { date: "2015-03-26T10:59:05.410000", db: "NVD", id: "CVE-2015-0639", }, { date: "2015-03-27T00:00:00", db: "CNNVD", id: "CNNVD-201503-568", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2015-03-31T00:00:00", db: "CNVD", id: "CNVD-2015-02089", }, { date: "2015-09-04T00:00:00", db: "VULHUB", id: "VHN-78585", }, { date: "2015-03-25T00:00:00", db: "BID", id: "73337", }, { date: "2015-03-30T00:00:00", db: "JVNDB", id: "JVNDB-2015-001945", }, { date: "2015-09-04T18:51:05.907000", db: "NVD", id: "CVE-2015-0639", }, { date: "2015-03-27T00:00:00", db: "CNNVD", id: "CNNVD-201503-568", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-201503-568", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco IOS XE of Common Flow Table Service disruption in functionality (DoS) Vulnerabilities", sources: [ { db: "JVNDB", id: "JVNDB-2015-001945", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "input validation", sources: [ { db: "CNNVD", id: "CNNVD-201503-568", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.