CVE-2015-0586Cisco IOS vulnerability

CWE-3994 documents4 sources
Severity
7.8HIGHNVD
EPSS
1.1%
top 22.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedJan 28
Latest updateMay 17

Description

The Network-Based Application Recognition (NBAR) protocol implementation in Cisco IOS 15.3(100)M and earlier on Cisco 2900 Integrated Services Router (aka Cisco Internet Router) devices allows remote attackers to cause a denial of service (NBAR process hang) via IPv4 packets, aka Bug ID CSCuo73682.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios15.3\(100\)m

🔴Vulnerability Details

2
GHSA
GHSA-7jcf-g7w4-7c7p: The Network-Based Application Recognition (NBAR) protocol implementation in Cisco IOS 152022-05-17
CVEList
CVE-2015-0586: The Network-Based Application Recognition (NBAR) protocol implementation in Cisco IOS 152015-01-28

📋Vendor Advisories

1
Cisco
Cisco 2900 Series Integrated Services Router Network-Based Application Recognition Denial of Service Vulnerability2015-01-27
CVE-2015-0586 — Cisco IOS vulnerability | cvebase