CVE-2015-0695

Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 73%
VendorProductVersion
ciscoios_xr
4.3.0
ciscoios_xr
4.3.1
ciscoios_xr
4.3.2
ciscoios_xr
4.3.3
ciscoios_xr
5.1.0
ciscoios_xr
5.1.1
ciscoios_xr
5.1.2
ciscoios_xr
5.2.0
ciscoios_xr
5.2.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-iosxr
http://www.securityfocus.com/bid/74162
http://www.securitytracker.com/id/1032139
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150415-iosxr
http://www.securityfocus.com/bid/74162
http://www.securitytracker.com/id/1032139