CVE-2008-1153Cisco IOS vulnerability

CWE-3994 documents4 sources
Severity
7.1HIGHNVD
EPSS
3.0%
top 13.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IOSCisco IOS
Timeline
PublishedMar 27
Latest updateMay 1

Description

Cisco IOS 12.1, 12.2, 12.3, and 12.4, with IPv4 UDP services and the IPv6 protocol enabled, allows remote attackers to cause a denial of service (device crash and possible blocked interface) via a crafted IPv6 packet to the device.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

NVDcisco/ios12.1, 12.2+1
NVDcisco/cisco_ios12.3, 12.4+1

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

2
GHSA
GHSA-676g-35q7-rhh4: Cisco IOS 122022-05-01
CVEList
CVE-2008-1153: Cisco IOS 122008-03-27

📋Vendor Advisories

1
Cisco
Cisco IOS User Datagram Protocol Delivery Issue For IPv4/IPv6 Dual-stack Routers2008-03-26
CVE-2008-1153 — Cisco IOS vulnerability | cvebase