Vulnerability Description
Cisco IOS XE 3.10.2S on an ASR 1000 device with an Embedded Services Processor (ESP) module, when NAT is enabled, allows remote attackers to cause a denial of service (module crash) via malformed H.323 packets, aka Bug ID CSCup21070.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios Xe | 13.10.2s |
| Cisco | Asr 1001 | All versions |
| Cisco | Asr 1001-X | All versions |
| Cisco | Asr 1002 | All versions |
| Cisco | Asr 1002-X | All versions |
| Cisco | Asr 1004 | All versions |
| Cisco | Asr 1006 | All versions |
| Cisco | Asr 1013 | All versions |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38210Vendor Advisory
- http://www.securitytracker.com/id/1032023
- http://tools.cisco.com/security/center/viewAlert.x?alertId=38210Vendor Advisory
- http://www.securitytracker.com/id/1032023
FAQ
What is CVE-2015-0688?
CVE-2015-0688 is a vulnerability with a CVSS score of 7.1 (HIGH). Cisco IOS XE 3.10.2S on an ASR 1000 device with an Embedded Services Processor (ESP) module, when NAT is enabled, allows remote attackers to cause a denial of service (module crash) via malformed H.32...
How severe is CVE-2015-0688?
CVE-2015-0688 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-0688?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xe, Cisco Asr 1001, Cisco Asr 1001-X, Cisco Asr 1002, Cisco Asr 1002-X.