Vulnerability Description
Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates in use, allows remote authenticated users to cause a denial of service (segmentation fault and device crash) via unspecified vectors, aka Bug ID CSCtq61128.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 15.1 |
| Cisco | Ios Xe | 3.1.0s |
Related Weaknesses (CWE)
References
- http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-4MCAVS.htmlVendor Advisory
- http://www.cisco.com/en/US/docs/ios/ios_xe/3/release/notes/asr1k_caveats_34s.htmVendor Advisory
- http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-4MCAVS.htmlVendor Advisory
- http://www.cisco.com/en/US/docs/ios/ios_xe/3/release/notes/asr1k_caveats_34s.htmVendor Advisory
FAQ
What is CVE-2011-4231?
CVE-2011-4231 is a vulnerability with a CVSS score of 6.3 (MEDIUM). Cisco IOS 15.1 and 15.2 and IOS XE 3.x, when configured as an IPsec hub with X.509 certificates in use, allows remote authenticated users to cause a denial of service (segmentation fault and device cr...
How severe is CVE-2011-4231?
CVE-2011-4231 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-4231?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Ios Xe.