Published: 11/08/2014 Updated: 29/08/2017
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

The EnergyWise module in Cisco IOS 12.2, 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.2.xXO, 3.3.xSG, 3.4.xSG, and 3.5.xE prior to 3.5.3E allows remote malicious users to cause a denial of service (device reload) via a crafted IPv4 packet, aka Bug ID CSCup52101.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios xe 3.4.0sg

cisco ios xe 3.4.1sg

cisco ios 15.4

cisco ios 15.2

cisco ios xe 3.5.0e

cisco ios xe 3.4.4sg

cisco ios xe 3.3.0sg

cisco ios xe 3.3.1sg

cisco ios 12.2

cisco ios xe 3.4.2sg

cisco ios xe 3.4.3sg

cisco ios 15.1

cisco ios 15.0

cisco ios xe 3.5.1e

cisco ios xe 3.2.00.xo.15.0\\(2\\)xo

cisco ios xe 3.2.0xo

cisco ios xe 3.5.2e

Vendor Advisories

A vulnerability in the EnergyWise module of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of the affected device The vulnerability is due to improper parsing of crafted EnergyWise packets destined to an affected device An attacker could exploit this vulnerability by sending a crafted Energy ...