CVE-2015-0687

Published Apr 3, 2015

Last updated 3 months ago

CVSS info 6.3

Overview

Description: The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual Switching System (VSS) is configured, allows remote authenticated users to cause a denial of service (device crash) by performing SNMP polling, aka Bug ID CSCuq04574.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.3
Impact score: 6.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1\\(2\\)sg4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC9E74C5-4BF5-4F29-938F-3E71784F08AB"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.1sg:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "37BD18D1-D526-478D-9F2C-8C9FEB3C32D8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4503:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "50E25997-76B2-46FF-8426-8F40002BEE78"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4503-e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B082823E-5514-495A-8D9B-40F361D9EDE5"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4506-e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6DBE8CEE-81CD-426C-8F28-61A41CFE8139"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4507r\\+e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "67A3C2A6-5162-46DC-AE82-EC0061D55A51"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4507r-e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A2183467-5CB5-46EE-92CC-85A2EE92E5DF"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4510r\\+e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E72F8E12-CB16-4C85-8F2E-0B799CC9E487"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_4510r-e:*:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "18E08577-0546-450C-BE1D-DF1A7638D419"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References