7.8

CVE-2009-2868

Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997.

Data is provided by the National Vulnerability Database (NVD)
CiscoIos Version12.2ex
CiscoIos Version12.2ira
CiscoIos Version12.2irb
CiscoIos Version12.2irc
CiscoIos Version12.2sb
CiscoIos Version12.2sca
CiscoIos Version12.2scb
CiscoIos Version12.2se
CiscoIos Version12.2sra
CiscoIos Version12.2srb
CiscoIos Version12.2src
CiscoIos Version12.2srd
CiscoIos Version12.2sxh
CiscoIos Version12.2sxi
CiscoIos Version12.2xna
CiscoIos Version12.2xnb
CiscoIos Version12.2xnc
CiscoIos Version12.2xnd
CiscoIos Version12.3t
CiscoIos Version12.3xl
CiscoIos Version12.3xr
CiscoIos Version12.3xs
CiscoIos Version12.3xx
CiscoIos Version12.3ya
CiscoIos Version12.3yd
CiscoIos Version12.3yf
CiscoIos Version12.3yg
CiscoIos Version12.3yh
CiscoIos Version12.3yi
CiscoIos Version12.3yq
CiscoIos Version12.3ys
CiscoIos Version12.3yt
CiscoIos Version12.3yu
CiscoIos Version12.3yx
CiscoIos Version12.3yz
CiscoIos Version12.4
CiscoIos Version12.4t
CiscoIos Version12.4xb
CiscoIos Version12.4xc
CiscoIos Version12.4xd
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.45% 0.608
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C