CVE-2012-5017
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
23/04/2014
Last modified:
05/10/2021
Description
Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of service (device reload) by establishing a VPN session and then sending malformed IKEv2 packets, aka Bug ID CSCub39268.
Impact
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:* | 15.1\(1\)sy (including) | |
cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1001:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1002:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1002_fixed_router:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1006:-:*:*:*:*:*:*:* | ||
cpe:2.3:h:cisco:asr_1023_router:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page