CVE-2015-0640

Published Mar 26, 2015
Last updated 3 months ago
CVSS info 7.8
Overview

Description: The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via large IP packets that require NAT and HSL processing after fragmentation, aka Bug ID CSCuo25741.
Source: ykramarz@cisco.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C
Weaknesses

nvd@nist.gov: CWE-20
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F6C871C9-3188-45A8-813D-20377636CB93"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48981190-4C87-48B8-918F-A8A9951254BA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "58ECBD42-D3C1-42E2-938B-D85BE56A198E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D6A8329-2A58-446A-B3C1-21AA2BBD24AE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F4D44065-91B3-4BED-B0ED-572F97B2D0BC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A4FDC07-F76A-4158-95A4-040FE29B14F4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D8110BB-6112-4CD5-A7ED-8D0E4225B7FF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA132110-6338-4958-A23F-E09058011181"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "52D93563-1E49-4ED7-885D-35836F2545FB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F2BF213-8DBB-4EB7-9D40-4F1DEB7034E5"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "913D878F-4F8C-4E8E-86D0-12D3BFC92425"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "982A0A36-F00E-4A8A-8237-07D90B9BA1F9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A4D6F82-A97D-423D-A3FD-6C89B3F4E53F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0656295-7CD0-4C81-9549-77B9937C01B4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.5s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "739E564D-A90E-4650-A243-62C025294DFD"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC6976C9-7FC4-41B2-B9D8-D6A23C0E7D04"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4F0311A2-7D85-424F-84EC-42A037D1A145"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "045F7A51-41A4-424E-85DE-39BA4868DB73"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.6s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A59ADC49-F656-4271-9EC8-963D381320E9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B2C6BCB1-4D6A-4F8E-B1E3-7ED927442583"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4414784F-7C38-45DA-B955-344AFCA4C42A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1EAD6D05-067F-405E-A2C3-1045F96E1725"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1156EB7F-677D-4267-9814-C14820B4E18A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A42F6E60-5D6F-46AC-A725-CC1BFDD93AD6"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "50657A0B-694B-417D-8A4C-33496D070DEF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F5563BFC-B0F7-42D7-B266-E27623C148A0"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "21AB02C6-6D2A-40E6-875F-C49F72FD58CC"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A61ECD64-21F1-4685-9DAF-FA95875FEBD9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A6279ABA-4C68-4349-A4B4-B29D7F7401C4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E803D8C7-E567-4C6F-ADE3-C247B7C3E98C"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A6A4782-7B98-4696-A762-FDE55CB9E729"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.8s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54FEE2D8-2507-4485-A6D2-82393AB19C7A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E9A1B891-8AB7-493C-93FF-3D1FA5DFA19A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20BF8AA3-610B-4168-922D-2847958EFFA5"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E6BBADF-5DAF-41CE-B6CC-5D7E498E085B"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEA1B7A4-6B48-4D0C-BA58-EE0E34DDB07E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FF17206A-27BA-4914-8BB5-4F031D88EA4A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AEC4E92B-1752-438D-BF43-4D93938C6776"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C1C77A7-FCD5-4558-A351-081D6678DB21"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9B42071-2BAA-4459-B575-EBD72A111381"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "24C948D8-C540-4FF1-A9F7-BFB20E5541FE"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7AF1294B-B4F6-40CC-A115-942B18CDA361"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B72E6572-FF41-4606-9DA5-FA486D591A58"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0A98DFE-18FF-455A-AFA6-49960CB98C85"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "277C9543-A842-45AB-A2EF-DB2F8412D748"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C942D30-8344-425E-804E-E1BB1F1F0D22"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E5E6FF1A-D90D-412A-8159-E766DC14FA57"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84E6DEE6-50EF-4333-B0B9-964A633734D1"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
