CVE-2015-6429

Published Dec 19, 2015

Last updated 8 years ago

CVSS info 5.0

Overview

Description: The IKEv1 state machine in Cisco IOS 15.4 through 15.6 and IOS XE 3.15 through 3.17 allows remote attackers to cause a denial of service (IPsec connection termination) via a crafted IKEv1 packet to a tunnel endpoint, aka Bug ID CSCuw08236.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-19

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.4\\(3\\)s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C63FF7C4-D9CE-4D6C-B36E-0C0DC06F453E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(1\\)s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9613EE90-A90A-4817-A5A1-F78A9F3BA571"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(1\\)t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59F21FEC-A536-45CB-9AE5-61CE45EAD1B7"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(2\\)s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3A259566-AA04-4DE8-900D-865384E56C8E"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(2\\)t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A4E00DF-60FD-48F2-A69A-D709A5657F6A"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "716EC9AA-0569-4FA7-A244-1A14FA15C5AD"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "097D1950-6159-45A2-8653-D3F90044D0C8"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1194A7BD-CB51-42CD-96E6-9ACF126DD8CA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F40A87C1-5EDB-4B50-84CF-729F5037E870"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.6\\(0.17\\)t:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96BDDBD0-684C-4E90-ACF9-F45D4B85835F"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t0a:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "679DCA8C-F64B-4716-BCC9-9C461A89CB29"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.15s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D9E5471-04AF-47A5-ACC7-335516356BDD"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.15s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FB8A0099-DE49-4AB6-A408-EE5D62642D17"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.15s.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE69B061-8523-487E-B749-28D56458A621"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.16s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25257039-7860-4424-8C92-267FC444DA33"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.16s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0D78F52-7B40-4A9B-AC8E-150AFCAA7AF1"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.17s.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "203E013A-85E3-4D5B-A863-86297134BA04"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.17s.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1BB0A028-FA64-4899-AEC7-D6C5040E7C0E"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References