CVE-2012-3895 — Cisco IOS vulnerability

4 documents4 sources

Severity

6.3MEDIUMNVD

EPSS

0.3%

top 43.23%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS

Timeline

PublishedSep 16

Latest updateMay 17

Description

Cisco IOS 15.0 through 15.3 allows remote authenticated users to cause a denial of service (device crash) via an MVPNv6 update, aka Bug ID CSCty89224.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 6.8 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/ios5 versions+4

🔴Vulnerability Details

GHSA

GHSA-r9r3-j3f2-cx97: Cisco IOS 15↗2022-05-17

▶

CVEList

CVE-2012-3895: Cisco IOS 15↗2012-09-16

▶

💬Community

Bugzilla

CVE-2012-6612 CVE-2013-6407 Apache Solr: XML eXternal Entity (XXE) flaw in XML and XSLT UpdateRequestHandler↗2013-11-29

▶