CVE-2015-0695
Last modified
CVE-2015-0695 is a vulnerability of currently unknown severity. Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.. EPSS estimates a 3.43% chance of exploitation in the next 30 days.
Description
Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios Xr | 4.3.0 |
| Cisco | Ios Xr | 4.3.1 |
| Cisco | Ios Xr | 4.3.2 |
| Cisco | Ios Xr | 4.3.3 |
| Cisco | Ios Xr | 5.1.0 |
| Cisco | Ios Xr | 5.1.1 |
| Cisco | Ios Xr | 5.1.2 |
| Cisco | Ios Xr | 5.2.0 |
| Cisco | Ios Xr | 5.2.1 |
References
- http://www.securityfocus.com/bid/74162Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032139Third Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/74162Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032139Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-0695?
How severe is CVE-2015-0695?
How do I fix CVE-2015-0695?
Are you affected by CVE-2015-0695?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST