CVE-2013-1148 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco IOS

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-20 — Improper Input Validation4 documents4 sources

Severity

7.8HIGHNVD

EPSS

1.0%

top 23.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS Cisco IOS XE

Timeline

PublishedMar 28

Latest updateMay 17

Description

The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/ios15.2

▶NVDcisco/ios_xe19 versions+18

🔴Vulnerability Details

GHSA

GHSA-hffr-h2c8-jr4p: The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15↗2022-05-17

▶

CVEList

CVE-2013-1148: The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15↗2013-03-28

▶

📋Vendor Advisories

Cisco

Cisco IOS Software IP Service Level Agreement Vulnerability↗2013-03-27

▶