CVE-2013-1218

CWE-119Buffer Overflow4 documents4 sources
Severity
7.8HIGH
EPSS
0.4%
top 37.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Intrusion Prevention SystemCisco ASA 5500-x Series IPS SSP Software
Timeline
PublishedJul 18
Latest updateMay 17

Description

Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 7.1(7)sp1E4 allows remote attackers to cause a denial of service (Analysis Engine process hang or device reload) via fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCue51272.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-rr98-pxc2-rprw: Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 72022-05-17
CVEList
CVE-2013-1218: Cisco Intrusion Prevention System (IPS) Software in ASA 5500-X IPS-SSP software modules before 72013-07-18

📋Vendor Advisories

1
Cisco
Multiple Vulnerabilities in Cisco Intrusion Prevention System Software2013-07-17
CVE-2013-1218 (HIGH CVSS 7.8) | Cisco Intrusion Prevention System ( | cvebase.io