7.8

CVE-2010-2836

Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID CSCtg21685.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Version12.4
CiscoIos Version12.4gc
CiscoIos Version12.4mda
CiscoIos Version12.4mr
CiscoIos Version12.4mra
CiscoIos Version12.4sw
CiscoIos Version12.4xa
CiscoIos Version12.4xb
CiscoIos Version12.4xc
CiscoIos Version12.4xd
CiscoIos Version12.4xe
CiscoIos Version12.4xf
CiscoIos Version12.4xg
CiscoIos Version12.4xj
CiscoIos Version12.4xk
CiscoIos Version12.4xl
CiscoIos Version12.4xm
CiscoIos Version12.4xn
CiscoIos Version12.4xp
CiscoIos Version12.4xt
CiscoIos Version12.4xv
CiscoIos Version12.4xw
CiscoIos Version12.4xy
CiscoIos Version12.4xz
CiscoIos Version12.4ya
CiscoIos Version12.4yb
CiscoIos Version12.4yd
CiscoIos Version15.0m
CiscoIos Version15.0xa
CiscoIos Version15.1t
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.43% 0.594
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C