CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-0654

Race condition in the TLS implementation in MainApp in the management interface in Cisco Intrusion Prevention System (IPS) Software before 7.3(3)E4 allows remote attackers to cause a denial of service (process hang) by establishing many HTTPS sessions, aka Bug ID CSCuq40652.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.5%

CVSS Severity

CVSS v2 Score 7.1

References

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-ips
http://www.securitytracker.com/id/1031908
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-ips
http://www.securitytracker.com/id/1031908

Products affected by CVE-2015-0654

Cisco » Intrusion Prevention System » Version: 7.2(1)e4

cpe:2.3:a:cisco:intrusion_prevention_system:7.2(1)e4
Cisco » Intrusion Prevention System » Version: 7.2(2)e4

cpe:2.3:a:cisco:intrusion_prevention_system:7.2(2)e4
Cisco » Intrusion Prevention System » Version: 7.3(2)e4

cpe:2.3:a:cisco:intrusion_prevention_system:7.3(2)e4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-0654

Products

Pricing

Contact Us