CVE-2015-4293

The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
VendorProductVersion
ciscoios_xe
2.1.0
ciscoios_xe
2.1.1
ciscoios_xe
2.1.2
ciscoios_xe
2.2.1
ciscoios_xe
2.2.2
ciscoios_xe
2.2.3
ciscoios_xe
2.3.0
ciscoios_xe
2.3.0t:t
ciscoios_xe
2.3.1t:t
ciscoios_xe
2.3.2
ciscoios_xe
2.4.0
ciscoios_xe
2.4.1
ciscoios_xe
2.5.0
ciscoios_xe
2.5.1
ciscoios_xe
2.5.2
ciscoios_xe
2.6.0
ciscoios_xe
2.6.1
ciscoios_xe
2.6.2
ciscoios_xe
3.10s.0:s.0
ciscoios_xe
3.10s.0a:s.0a
ciscoios_xe
3.10s.1:s.1
ciscoios_xe
3.10s.2:s.2
ciscoios_xe
3.10s.3:s.3
ciscoios_xe
3.11s.0:s.0
ciscoios_xe
3.11s.1:s.1
ciscoios_xe
3.11s.2:s.2
ciscoios_xe
3.12s.0:s.0
ciscoios_xe
3.12s.1:s.1
ciscoios_xe
3.13s.0:s.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/viewAlert.x?alertId=40215
http://www.securitytracker.com/id/1033122
http://tools.cisco.com/security/center/viewAlert.x?alertId=40215
http://www.securitytracker.com/id/1033122