Vulnerability Details CVE-2015-0618
Cisco IOS XR 5.0.1 and 5.2.1 on Network Convergence System (NCS) 6000 devices and 5.1.3 and 5.1.4 on Carrier Routing System X (CRS-X) devices allows remote attackers to cause a denial of service (line-card reload) via malformed IPv6 packets with extension headers, aka Bug ID CSCuq95241.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.2%
CVSS Severity
CVSS v2 Score 7.1
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150220-ipv6
- http://www.securityfocus.com/bid/72713
- http://www.securitytracker.com/id/1031778
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150220-ipv6
- http://www.securityfocus.com/bid/72713
- http://www.securitytracker.com/id/1031778
Products affected by CVE-2015-0618
-
cpe:2.3:a:cisco:carrier_routing_system:5.1.3
-
cpe:2.3:a:cisco:carrier_routing_system:5.1.4
-
cpe:2.3:h:cisco:network_convergence_system_6000:*
-
cpe:2.3:o:cisco:ios_xr:5.0.1
-
cpe:2.3:o:cisco:ios_xr:5.2.1