2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2015-0640" ,
2025-01-26 03:03:52 +00:00
"sourceIdentifier" : "psirt@cisco.com" ,
2023-04-24 12:24:31 +02:00
"published" : "2015-03-26T10:59:06.270" ,
2024-11-22 23:14:22 +00:00
"lastModified" : "2024-11-21T02:23:27.220" ,
"vulnStatus" : "Modified" ,
2024-12-08 03:06:42 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via large IP packets that require NAT and HSL processing after fragmentation, aka Bug ID CSCuo25741."
} ,
{
"lang" : "es" ,
"value" : "La caracter\u00edstica high-speed logging (HSL) en Cisco IOS XE 2.x y 3.x anterior a 3.10.4S, 3.11 anterior a 3.11.3S, 3.12 anterior a 3.12.1S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S permite a atacantes remotos causar una denegaci\u00f3n de servicio (recarga de dispositivo) a trav\u00e9s de paquetes IP grandes que requieren el procesamiento NAT y HSL despu\u00e9s de la fragmentaci\u00f3n, tambi\u00e9n conocido como Bug ID CSCuo25741."
}
] ,
"metrics" : {
"cvssMetricV2" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "2.0" ,
"vectorString" : "AV:N/AC:L/Au:N/C:N/I:N/A:C" ,
2024-11-22 23:14:22 +00:00
"baseScore" : 7.8 ,
2023-04-24 12:24:31 +02:00
"accessVector" : "NETWORK" ,
"accessComplexity" : "LOW" ,
"authentication" : "NONE" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "NONE" ,
2024-11-22 23:14:22 +00:00
"availabilityImpact" : "COMPLETE"
2023-04-24 12:24:31 +02:00
} ,
"baseSeverity" : "HIGH" ,
"exploitabilityScore" : 10.0 ,
"impactScore" : 6.9 ,
"acInsufInfo" : false ,
"obtainAllPrivilege" : false ,
"obtainUserPrivilege" : false ,
"obtainOtherPrivilege" : false ,
"userInteractionRequired" : false
}
]
} ,
"weaknesses" : [
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"description" : [
{
"lang" : "en" ,
"value" : "CWE-20"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F6C871C9-3188-45A8-813D-20377636CB93"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "48981190-4C87-48B8-918F-A8A9951254BA"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "58ECBD42-D3C1-42E2-938B-D85BE56A198E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "8D6A8329-2A58-446A-B3C1-21AA2BBD24AE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F4D44065-91B3-4BED-B0ED-572F97B2D0BC"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1A4FDC07-F76A-4158-95A4-040FE29B14F4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.1s.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6D8110BB-6112-4CD5-A7ED-8D0E4225B7FF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.2s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AA132110-6338-4958-A23F-E09058011181"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.2s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "52D93563-1E49-4ED7-885D-35836F2545FB"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.2s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "2F2BF213-8DBB-4EB7-9D40-4F1DEB7034E5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.2s.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "913D878F-4F8C-4E8E-86D0-12D3BFC92425"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.3s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "982A0A36-F00E-4A8A-8237-07D90B9BA1F9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.3s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7A4D6F82-A97D-423D-A3FD-6C89B3F4E53F"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.3s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C0656295-7CD0-4C81-9549-77B9937C01B4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.5s:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "739E564D-A90E-4650-A243-62C025294DFD"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.5s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FC6976C9-7FC4-41B2-B9D8-D6A23C0E7D04"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.5s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4F0311A2-7D85-424F-84EC-42A037D1A145"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.5s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "045F7A51-41A4-424E-85DE-39BA4868DB73"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.6s:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A59ADC49-F656-4271-9EC8-963D381320E9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.6s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B2C6BCB1-4D6A-4F8E-B1E3-7ED927442583"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.6s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "4414784F-7C38-45DA-B955-344AFCA4C42A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.6s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1EAD6D05-067F-405E-A2C3-1045F96E1725"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "1156EB7F-677D-4267-9814-C14820B4E18A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A42F6E60-5D6F-46AC-A725-CC1BFDD93AD6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "50657A0B-694B-417D-8A4C-33496D070DEF"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "F5563BFC-B0F7-42D7-B266-E27623C148A0"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "21AB02C6-6D2A-40E6-875F-C49F72FD58CC"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.4:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A61ECD64-21F1-4685-9DAF-FA95875FEBD9"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.5:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A6279ABA-4C68-4349-A4B4-B29D7F7401C4"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.6:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E803D8C7-E567-4C6F-ADE3-C247B7C3E98C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.7s.7:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "5A6A4782-7B98-4696-A762-FDE55CB9E729"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.8s:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "54FEE2D8-2507-4485-A6D2-82393AB19C7A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E9A1B891-8AB7-493C-93FF-3D1FA5DFA19A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "20BF8AA3-610B-4168-922D-2847958EFFA5"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6E6BBADF-5DAF-41CE-B6CC-5D7E498E085B"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AEA1B7A4-6B48-4D0C-BA58-EE0E34DDB07E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "FF17206A-27BA-4914-8BB5-4F031D88EA4A"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "AEC4E92B-1752-438D-BF43-4D93938C6776"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "5C1C77A7-FCD5-4558-A351-081D6678DB21"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "A9B42071-2BAA-4459-B575-EBD72A111381"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "24C948D8-C540-4FF1-A9F7-BFB20E5541FE"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "7AF1294B-B4F6-40CC-A115-942B18CDA361"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.10s.3:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "B72E6572-FF41-4606-9DA5-FA486D591A58"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "C0A98DFE-18FF-455A-AFA6-49960CB98C85"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "277C9543-A842-45AB-A2EF-DB2F8412D748"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "6C942D30-8344-425E-804E-E1BB1F1F0D22"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "E5E6FF1A-D90D-412A-8159-E766DC14FA57"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:o:cisco:ios_xe:3.12s.1:*:*:*:*:*:*:*" ,
"matchCriteriaId" : "84E6DEE6-50EF-4333-B0B9-964A633734D1"
}
]
}
]
}
] ,
"references" : [
{
"url" : "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe" ,
2025-01-26 03:03:52 +00:00
"source" : "psirt@cisco.com" ,
2023-04-24 12:24:31 +02:00
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securitytracker.com/id/1031981" ,
2025-01-26 03:03:52 +00:00
"source" : "psirt@cisco.com"
2024-11-22 23:14:22 +00:00
} ,
{
"url" : "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "http://www.securitytracker.com/id/1031981" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108"
2023-04-24 12:24:31 +02:00
}
]
}
