- Description
- The Packet Data Network Gateway (aka PGW) component on Cisco ASR 5000 devices with software 15.0(912), 15.0(935), and 15.0(938) allows remote attackers to cause a denial of service (Session Manager outage) via malformed fields in an IP packet, aka Bug ID CSCut38476.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
- nvd@nist.gov
- CWE-20
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:asr_5000_series_software:15.0\\(912\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "51A16058-34AD-414A-81A6-A1A5E88FA345"
},
{
"criteria": "cpe:2.3:a:cisco:asr_5000_series_software:15.0\\(935\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37F6C2D8-E2AC-4D64-8676-A527BC0F437D"
},
{
"criteria": "cpe:2.3:a:cisco:asr_5000_series_software:15.0\\(938\\):*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E1B6AB8-AA3E-4FD6-99BC-3204C2844C53"
}
],
"operator": "OR"
}
]
}
]