CVE-2013-6686Improper Input Validation in Cisco IOS

CWE-20Improper Input ValidationCWE-121Stack-based Buffer Overflow6 documents6 sources
Severity
6.8MEDIUMNVD
EPSS
0.8%
top 25.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedNov 18
Latest updateMay 17

Description

The SSL VPN implementation in Cisco IOS 15.3(1)T2 and earlier allows remote authenticated users to cause a denial of service (interface queue wedge) via crafted DTLS packets in an SSL session, aka Bug IDs CSCuh97409 and CSCud90568.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 8.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios15.3+4

🔴Vulnerability Details

2
GHSA
GHSA-7467-v6r8-xmjw: The SSL VPN implementation in Cisco IOS 152022-05-17
CVEList
CVE-2013-6686: The SSL VPN implementation in Cisco IOS 152013-11-16

📋Vendor Advisories

2
Cisco
Cisco IOS Software SSL VPN Interface Queue Wedge Denial of Service Vulnerability2013-11-13
Red Hat
glibc: stack overflow in getaddrinfo()'s use of alloca()2011-04-13

💬Community

1
Bugzilla
CVE-2012-6686 CVE-2013-4357 glibc: stack overflow in getaddrinfo()'s use of alloca()2013-09-18
CVE-2013-6686 — Improper Input Validation in Cisco IOS | cvebase