CVE-2004-0710Cisco IOS vulnerability

CWE-3995 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
1.6%
top 18.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOSCisco Ipsec Malformed IKE Packet
Timeline
PublishedJul 27
Latest updateApr 29

Description

IP Security VPN Services Module (VPNSM) in Cisco Catalyst 6500 Series Switch and the Cisco 7600 Series Internet Routers running IOS before 12.2(17b)SXA, before 12.2(17d)SXB, or before 12.2(14)SY03 could allow remote attackers to cause a denial of service (device crash and reload) via a malformed Internet Key Exchange (IKE) packet.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDcisco/ios8 versions+7

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

1
GHSA
GHSA-mj8m-9w7q-7979: IP Security VPN Services Module (VPNSM) in Cisco Catalyst 6500 Series Switch and the Cisco 7600 Series Internet Routers running IOS before 122022-04-29

📋Vendor Advisories

2
Cisco
Cisco IPSec Malformed IKE Packet Vulnerability2004-04-08
Cisco
Cisco IPSec Malformed IKE Packet Vulnerability
CVE-2004-0710 — Cisco IOS vulnerability | cvebase