CVE-2012-5037 — Cisco IOS vulnerability

CWE-2643 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.1%

top 75.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS

Timeline

PublishedApr 23

Latest updateMay 17

Description

The ACL implementation in Cisco IOS before 15.1(1)SY on Catalyst 6500 and 7600 devices allows local users to cause a denial of service (device reload) via a "no object-group" command followed by an object-group command, aka Bug ID CSCts16133.

CVSS vector

AV:L/AC:L/C:N/I:N/A:CExploitability: 3.1 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/ios15.1

🔴Vulnerability Details

GHSA

GHSA-g7w7-75vv-8g8f: The ACL implementation in Cisco IOS before 15↗2022-05-17

▶

CVEList

CVE-2012-5037: The ACL implementation in Cisco IOS before 15↗2014-04-23

▶