1. Home
  2. CVE Database
  3. CVE-2012-4620
HIGH · 7.8

CVE-2012-4620

Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP...

Vulnerability Description

Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP, (2) IPIP, or (3) IPv6 in IPv4 packets, aka Bug ID CSCts66808.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
Cisco10008 RouterAll versions
CiscoIos12.2

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2012-4620?

CVE-2012-4620 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP...

How severe is CVE-2012-4620?

CVE-2012-4620 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-4620?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco 10008 Router, Cisco Ios.