CVE-2015-4202

Cisco IOS 12.2SCH - Exposure of Sensitive Information via IPDR Service

Title source: llm
STIX 2.1

Description

Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems (CMTS) does not properly restrict access to the IP Detail Record (IPDR) service, which allows remote attackers to obtain potentially sensitive MAC address and network-utilization information via crafted IPDR packets, aka Bug ID CSCua39203.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032678
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/75321
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=39432

Scores

EPSS 0.0181
EPSS Percentile 76.0%

Details

CWE
CWE-200
Status published
Products (2)
cisco/ios 12.2\(33\)sch
cisco/ios 12.2sch
Published Jun 20, 2015
Tracked Since Feb 18, 2026