Strix
26.1K

CVE-2009-2868

UnknownEPSS 1.73%

Last modified

CVE-2009-2868 is a vulnerability of currently unknown severity. Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.. EPSS estimates a 1.73% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.

Metrics

EPSS Probability
1.73%

74.7th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
CiscoIos12.2ex
CiscoIos12.2ira
CiscoIos12.2irb
CiscoIos12.2irc
CiscoIos12.2sb
CiscoIos12.2sca
CiscoIos12.2scb
CiscoIos12.2se
CiscoIos12.2sra
CiscoIos12.2srb
CiscoIos12.2src
CiscoIos12.2srd
CiscoIos12.2sxh
CiscoIos12.2sxi
CiscoIos12.2xna
CiscoIos12.2xnb
CiscoIos12.2xnc
CiscoIos12.2xnd
CiscoIos12.3t
CiscoIos12.3xl
CiscoIos12.3xr
CiscoIos12.3xs
CiscoIos12.3xx
CiscoIos12.3ya
CiscoIos12.3yd
CiscoIos12.3yf
CiscoIos12.3yg
CiscoIos12.3yh
CiscoIos12.3yi
CiscoIos12.3yq
CiscoIos12.3ys
CiscoIos12.3yt
CiscoIos12.3yu
CiscoIos12.3yx
CiscoIos12.3yz
CiscoIos12.4
CiscoIos12.4t
CiscoIos12.4xb
CiscoIos12.4xc
CiscoIos12.4xd

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2009-2868?
Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.
How severe is CVE-2009-2868?
Severity scoring for CVE-2009-2868 is pending analysis. The EPSS model estimates a 1.73% probability of exploitation in the next 30 days.
How do I fix CVE-2009-2868?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2009-2868?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST