CVE-2012-3946 — Cisco IOS vulnerability

CWE-2643 documents3 sources
Severity
5.0MEDIUMNVD
EPSS
0.2%
top 56.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedApr 24
Latest updateMay 17

Description

Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

â–¶NVDcisco/ios15.3

🔴Vulnerability Details

2
GHSA
GHSA-6g2p-g3v6-8357: Cisco IOS before 15↗2022-05-17
â–¶
CVEList
CVE-2012-3946: Cisco IOS before 15↗2014-04-24
â–¶
CVE-2012-3946 — Cisco IOS vulnerability | cvebase