CVE-2015-0640

{"id": "CVE-2015-0640", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-03-26T10:59:06.270", "references": [{"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-iosxe", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1031981", "source": "ykramarz@cisco.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "The high-speed logging (HSL) feature in Cisco IOS XE 2.x and 3.x before 3.10.4S, 3.11 before 3.11.3S, 3.12 before 3.12.1S, 3.13 before 3.13.0S, 3.14 before 3.14.0S, and 3.15 before 3.15.0S allows remote attackers to cause a denial of service (device reload) via large IP packets that require NAT and HSL processing after fragmentation, aka Bug ID CSCuo25741."}, {"lang": "es", "value": "La caracter\u00edstica high-speed logging (HSL) en Cisco IOS XE 2.x y 3.x anterior a 3.10.4S, 3.11 anterior a 3.11.3S, 3.12 anterior a 3.12.1S, 3.13 anterior a 3.13.0S, 3.14 anterior a 3.14.0S, y 3.15 anterior a 3.15.0S permite a atacantes remotos causar una denegaci\u00f3n de servicio (recarga de dispositivo) a trav\u00e9s de paquetes IP grandes que requieren el procesamiento NAT y HSL despu\u00e9s de la fragmentaci\u00f3n, tambi\u00e9n conocido como Bug ID CSCuo25741."}], "lastModified": "2015-09-04T18:51:13.420", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6C871C9-3188-45A8-813D-20377636CB93"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48981190-4C87-48B8-918F-A8A9951254BA"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "58ECBD42-D3C1-42E2-938B-D85BE56A198E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D6A8329-2A58-446A-B3C1-21AA2BBD24AE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4D44065-91B3-4BED-B0ED-572F97B2D0BC"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1A4FDC07-F76A-4158-95A4-040FE29B14F4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.1s.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D8110BB-6112-4CD5-A7ED-8D0E4225B7FF"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AA132110-6338-4958-A23F-E09058011181"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52D93563-1E49-4ED7-885D-35836F2545FB"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F2BF213-8DBB-4EB7-9D40-4F1DEB7034E5"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.2s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "913D878F-4F8C-4E8E-86D0-12D3BFC92425"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "982A0A36-F00E-4A8A-8237-07D90B9BA1F9"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A4D6F82-A97D-423D-A3FD-6C89B3F4E53F"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0656295-7CD0-4C81-9549-77B9937C01B4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "739E564D-A90E-4650-A243-62C025294DFD"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC6976C9-7FC4-41B2-B9D8-D6A23C0E7D04"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F0311A2-7D85-424F-84EC-42A037D1A145"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "045F7A51-41A4-424E-85DE-39BA4868DB73"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A59ADC49-F656-4271-9EC8-963D381320E9"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2C6BCB1-4D6A-4F8E-B1E3-7ED927442583"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4414784F-7C38-45DA-B955-344AFCA4C42A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EAD6D05-067F-405E-A2C3-1045F96E1725"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1156EB7F-677D-4267-9814-C14820B4E18A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A42F6E60-5D6F-46AC-A725-CC1BFDD93AD6"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50657A0B-694B-417D-8A4C-33496D070DEF"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5563BFC-B0F7-42D7-B266-E27623C148A0"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "21AB02C6-6D2A-40E6-875F-C49F72FD58CC"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A61ECD64-21F1-4685-9DAF-FA95875FEBD9"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6279ABA-4C68-4349-A4B4-B29D7F7401C4"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E803D8C7-E567-4C6F-ADE3-C247B7C3E98C"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.7s.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A6A4782-7B98-4696-A762-FDE55CB9E729"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "54FEE2D8-2507-4485-A6D2-82393AB19C7A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9A1B891-8AB7-493C-93FF-3D1FA5DFA19A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "20BF8AA3-610B-4168-922D-2847958EFFA5"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E6BBADF-5DAF-41CE-B6CC-5D7E498E085B"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEA1B7A4-6B48-4D0C-BA58-EE0E34DDB07E"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FF17206A-27BA-4914-8BB5-4F031D88EA4A"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEC4E92B-1752-438D-BF43-4D93938C6776"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C1C77A7-FCD5-4558-A351-081D6678DB21"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9B42071-2BAA-4459-B575-EBD72A111381"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24C948D8-C540-4FF1-A9F7-BFB20E5541FE"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7AF1294B-B4F6-40CC-A115-942B18CDA361"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B72E6572-FF41-4606-9DA5-FA486D591A58"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C0A98DFE-18FF-455A-AFA6-49960CB98C85"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "277C9543-A842-45AB-A2EF-DB2F8412D748"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C942D30-8344-425E-804E-E1BB1F1F0D22"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5E6FF1A-D90D-412A-8159-E766DC14FA57"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84E6DEE6-50EF-4333-B0B9-964A633734D1"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}