Vulnerability Description
The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual Switching System (VSS) is configured, allows remote authenticated users to cause a denial of service (device crash) by performing SNMP polling, aka Bug ID CSCuq04574.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 15.1\(2\)sg4 |
| Cisco | Catalyst 4503 | All versions |
| Cisco | Catalyst 4503-E | All versions |
| Cisco | Catalyst 4506-E | All versions |
| Cisco | Catalyst 4507R\+E | All versions |
| Cisco | Catalyst 4507R-E | All versions |
| Cisco | Catalyst 4510R\+E | All versions |
| Cisco | Catalyst 4510R-E | All versions |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38194Vendor Advisory
- http://www.securitytracker.com/id/1032022
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38194Vendor Advisory
- http://www.securitytracker.com/id/1032022
FAQ
What is CVE-2015-0687?
CVE-2015-0687 is a vulnerability with a CVSS score of 6.3 (MEDIUM). The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual Switching System (VSS) is configured, allows remote authenticated users to cause a denial of servic...
How severe is CVE-2015-0687?
CVE-2015-0687 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0687?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Catalyst 4503, Cisco Catalyst 4503-E, Cisco Catalyst 4506-E, Cisco Catalyst 4507R\+E.