CVE-2015-0642
Cisco IOS XE 2.5.x-3.13.xS & IOS 12.2-15.4 DoS via Malformed IKEv2 Packets
Title source: llmDescription
Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum36951.
References (4)
Core 4
Core References
Vendor Advisory x_refsource_confirm
http://tools.cisco.com/security/center/viewAlert.x?alertId=37816
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1031978
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/73333
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2
Scores
EPSS
0.0278
EPSS Percentile
84.7%
Details
CWE
CWE-20
Status
published
Products (50)
cisco/ios
12.2
cisco/ios
12.4
cisco/ios
15.0
cisco/ios
15.1
cisco/ios
15.2
cisco/ios
15.3
cisco/ios
15.4
cisco/ios_xe
2.5.0
cisco/ios_xe
2.5.1
cisco/ios_xe
3.1s.0
... and 40 more
Published
Mar 26, 2015
Tracked Since
Feb 18, 2026