CVE-2015-6324

The DHCPv6 relay implementation in Cisco Adaptive Security Appliance (ASA) software 9.0 before 9.0(4.37), 9.1 before 9.1(6.6), 9.2 before 9.2(4), 9.3 before 9.3(3.5), and 9.4 before 9.4(2) allows remote attackers to cause a denial of service (device reload) via crafted DHCPv6 packets, aka Bug IDs CSCus56252 and CSCus57142.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.1 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 70%
VendorProductVersion
ciscoadaptive_security_appliance_software
9.0.1
ciscoadaptive_security_appliance_software
9.0.2
ciscoadaptive_security_appliance_software
9.0.2.10
ciscoadaptive_security_appliance_software
9.0.3
ciscoadaptive_security_appliance_software
9.0.3.6
ciscoadaptive_security_appliance_software
9.0.3.8
ciscoadaptive_security_appliance_software
9.0.4
ciscoadaptive_security_appliance_software
9.0.4.1
ciscoadaptive_security_appliance_software
9.0.4.5
ciscoadaptive_security_appliance_software
9.0.4.7
ciscoadaptive_security_appliance_software
9.0.4.17
ciscoadaptive_security_appliance_software
9.0.4.20
ciscoadaptive_security_appliance_software
9.0.4.24
ciscoadaptive_security_appliance_software
9.0.4.26
ciscoadaptive_security_appliance_software
9.0.4.29
ciscoadaptive_security_appliance_software
9.0.4.33
ciscoadaptive_security_appliance_software
9.1.1
ciscoadaptive_security_appliance_software
9.1.1.4
ciscoadaptive_security_appliance_software
9.1.2
ciscoadaptive_security_appliance_software
9.1.2.8
ciscoadaptive_security_appliance_software
9.1.3
ciscoadaptive_security_appliance_software
9.1.3.2
ciscoadaptive_security_appliance_software
9.1.4
ciscoadaptive_security_appliance_software
9.1.4.5
ciscoadaptive_security_appliance_software
9.1.5
ciscoadaptive_security_appliance_software
9.1.5.10
ciscoadaptive_security_appliance_software
9.1.5.12
ciscoadaptive_security_appliance_software
9.1.5.15
ciscoadaptive_security_appliance_software
9.1.5.21
ciscoadaptive_security_appliance_software
9.1.6
ciscoadaptive_security_appliance_software
9.1.6.4
ciscoadaptive_security_appliance_software
9.2.1
ciscoadaptive_security_appliance_software
9.2.2
ciscoadaptive_security_appliance_software
9.2.2.4
ciscoadaptive_security_appliance_software
9.2.2.7
ciscoadaptive_security_appliance_software
9.2.2.8
ciscoadaptive_security_appliance_software
9.2.3
ciscoadaptive_security_appliance_software
9.2.3.3
ciscoadaptive_security_appliance_software
9.2.3.4
ciscoadaptive_security_appliance_software
9.3.1
ciscoadaptive_security_appliance_software
9.3.1.1
ciscoadaptive_security_appliance_software
9.3.2
ciscoadaptive_security_appliance_software
9.3.2.2
ciscoadaptive_security_appliance_software
9.3.3
ciscoadaptive_security_appliance_software
9.4.1
ciscoadaptive_security_appliance_software
9.4.1.1
ciscoadaptive_security_appliance_software
9.4.1.2
ciscoadaptive_security_appliance_software
9.4.1.3
ciscoadaptive_security_appliance_software
9.4.1.5
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1
http://www.securitytracker.com/id/1033912
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151021-asa-dhcp1
http://www.securitytracker.com/id/1033912