CVE-2011-2578Missing Release of Memory after Effective Lifetime in Cisco IOS

CWE-3993 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.6%
top 30.45%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedMay 2
Latest updateMay 17

Description

Memory leak in Cisco IOS 15.1 and 15.2 allows remote attackers to cause a denial of service (memory consumption) via malformed SIP packets on a NAT interface, aka Bug ID CSCts12366.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios15.1, 15.2+1

🔴Vulnerability Details

2
GHSA
GHSA-38xx-mw72-x795: Memory leak in Cisco IOS 152022-05-17
CVEList
CVE-2011-2578: Memory leak in Cisco IOS 152012-05-02
CVE-2011-2578 — Cisco IOS vulnerability | cvebase