CVE-2015-6429

The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a tunnel endpoint, aka Bug ID CSCuw08236.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
VendorProductVersion
ciscoios
15.4\(3\)s
ciscoios
15.5\(1\)s
ciscoios
15.5\(1\)t
ciscoios
15.5\(2\)s
ciscoios
15.5\(2\)t
ciscoios
15.5\(3\)m
ciscoios
15.5\(3\)m1
ciscoios
15.5\(3\)s
ciscoios
15.5\(3\)s1
ciscoios
15.6\(0.17\)t
ciscoios
15.6\(1\)t0a
ciscoios_xe
3.15s.0:s.0
ciscoios_xe
3.15s.1:s.1
ciscoios_xe
3.15s.2:s.2
ciscoios_xe
3.16s.0:s.0
ciscoios_xe
3.16s.1:s.1
ciscoios_xe
3.17s.0:s.0
ciscoios_xe
3.17s.1:s.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151218-ios
http://www.securitytracker.com/id/1034505
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151218-ios
http://www.securitytracker.com/id/1034505