CVE-2013-1142Race Condition in Cisco IOS

CWE-362Race ConditionCWE-3995 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.3%
top 47.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedMar 28
Latest updateMay 13

Description

Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 allows remote attackers to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios12.212.4+1

🔴Vulnerability Details

2
GHSA
GHSA-hh95-5fxw-r47q: Race condition in the VRF-aware NAT feature in Cisco IOS 122022-05-13
CVEList
CVE-2013-1142: Race condition in the VRF-aware NAT feature in Cisco IOS 122013-03-28

📋Vendor Advisories

2
Cisco
Cisco IOS Software Network Address Translation Vulnerability2013-03-27
Cisco
Cisco IOS Software Network Address Translation Denial of Service Vulnerability2013-03-27
CVE-2013-1142 — Race Condition in Cisco IOS | cvebase