CVE-2015-4243 — Cisco IOS XE vulnerability
Severity
6.1MEDIUMNVD
EPSS
0.3%
top 50.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJul 8
Latest updateMay 17
Description
The PPPoE establishment implementation in Cisco IOS XE 3.5.0S on ASR 1000 devices allows remote attackers to cause a denial of service (device reload) by sending malformed PPPoE Active Discovery Request (PADR) packets on the local network, aka Bug ID CSCty94202.
CVSS vector
AV:A/AC:L/C:N/I:N/A:CExploitability: 6.5 | Impact: 6.9