7.8

CVE-2012-4623

The DHCPv6 server in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 and IOS XE 2.1.x through 2.6.x, 3.1.xS before 3.1.4S, 3.1.xSG and 3.2.xSG before 3.2.5SG, 3.2.xS, 3.2.xXO, 3.3.xS, and 3.3.xSG before 3.3.1SG allows remote attackers to cause a denial of service (device reload) via a malformed DHCPv6 packet, aka Bug ID CSCto57723.

Data is provided by the National Vulnerability Database (NVD)
CiscoIos Xe Version2.1
CiscoIos Xe Version2.1.0
CiscoIos Xe Version2.1.1
CiscoIos Xe Version2.1.2
CiscoIos Xe Version2.2
CiscoIos Xe Version2.2.1
CiscoIos Xe Version2.2.2
CiscoIos Xe Version2.2.3
CiscoIos Xe Version2.3
CiscoIos Xe Version2.3.0
CiscoIos Xe Version2.3.1
CiscoIos Xe Version2.3.1t
CiscoIos Xe Version2.3.2
CiscoIos Xe Version2.4
CiscoIos Xe Version2.4.0
CiscoIos Xe Version2.4.1
CiscoIos Xe Version2.4.2
CiscoIos Xe Version2.4.3
CiscoIos Xe Version2.4.4
CiscoIos Xe Version2.5.0
CiscoIos Xe Version2.5.1
CiscoIos Xe Version2.5.2
CiscoIos Xe Version2.6.0
CiscoIos Xe Version2.6.1
CiscoIos Xe Version2.6.2
CiscoIos Version12.3
CiscoIos Version12.3b
CiscoIos Version12.3bc
CiscoIos Version12.3bw
CiscoIos Version12.3j
CiscoIos Version12.3ja
CiscoIos Version12.3jea
CiscoIos Version12.3jeb
CiscoIos Version12.3jec
CiscoIos Version12.3jed
CiscoIos Version12.3jk
CiscoIos Version12.3jl
CiscoIos Version12.3jx
CiscoIos Version12.3t
CiscoIos Version12.3tpc
CiscoIos Version12.3va
CiscoIos Version12.3xa
CiscoIos Version12.3xb
CiscoIos Version12.3xc
CiscoIos Version12.3xd
CiscoIos Version12.3xe
CiscoIos Version12.3xf
CiscoIos Version12.3xg
CiscoIos Version12.3xh
CiscoIos Version12.3xi
CiscoIos Version12.3xj
CiscoIos Version12.3xk
CiscoIos Version12.3xl
CiscoIos Version12.3xm
CiscoIos Version12.3xn
CiscoIos Version12.3xq
CiscoIos Version12.3xr
CiscoIos Version12.3xs
CiscoIos Version12.3xt
CiscoIos Version12.3xu
CiscoIos Version12.3xv
CiscoIos Version12.3xw
CiscoIos Version12.3xx
CiscoIos Version12.3xy
CiscoIos Version12.3xz
CiscoIos Version12.3ya
CiscoIos Version12.3yb
CiscoIos Version12.3yc
CiscoIos Version12.3yd
CiscoIos Version12.3ye
CiscoIos Version12.3yf
CiscoIos Version12.3yg
CiscoIos Version12.3yh
CiscoIos Version12.3yi
CiscoIos Version12.3yj
CiscoIos Version12.3yk
CiscoIos Version12.3yl
CiscoIos Version12.3ym
CiscoIos Version12.3yn
CiscoIos Version12.3yq
CiscoIos Version12.3yr
CiscoIos Version12.3ys
CiscoIos Version12.3yt
CiscoIos Version12.3yu
CiscoIos Version12.3yw
CiscoIos Version12.3yx
CiscoIos Version12.3yz
CiscoIos Version12.3za
CiscoIos Version12.4
CiscoIos Version12.4gc
CiscoIos Version12.4ja
CiscoIos Version12.4jda
CiscoIos Version12.4jdc
CiscoIos Version12.4jdd
CiscoIos Version12.4jk
CiscoIos Version12.4jl
CiscoIos Version12.4jma
CiscoIos Version12.4jmb
CiscoIos Version12.4jx
CiscoIos Version12.4md
CiscoIos Version12.4mda
CiscoIos Version12.4mdb
CiscoIos Version12.4mr
CiscoIos Version12.4mra
CiscoIos Version12.4xm
CiscoIos Version12.4xn
CiscoIos Version12.4xp
CiscoIos Version12.4xq
CiscoIos Version12.4xr
CiscoIos Version12.4xt
CiscoIos Version12.4xv
CiscoIos Version12.4xw
CiscoIos Version12.4xy
CiscoIos Version12.4xz
CiscoIos Version12.4ya
CiscoIos Version12.4yb
CiscoIos Version12.4yd
CiscoIos Version12.4ye
CiscoIos Version12.4yg
CiscoIos Version15.0
CiscoIos Version15.1
CiscoIos Version15.2
CiscoIos Xe Version3.1.0s
CiscoIos Xe Version3.1.0sg
CiscoIos Xe Version3.1.1s
CiscoIos Xe Version3.1.1sg
CiscoIos Xe Version3.1.2s
CiscoIos Xe Version3.1.3s
CiscoIos Xe Version3.2.0s
CiscoIos Xe Version3.2.0sg
CiscoIos Xe Version3.2.0xo
CiscoIos Xe Version3.2.1s
CiscoIos Xe Version3.2.1sg
CiscoIos Xe Version3.2.2s
CiscoIos Xe Version3.2.2sg
CiscoIos Xe Version3.2.3sg
CiscoIos Xe Version3.2.4sg
CiscoIos Xe Version3.3.0s
CiscoIos Xe Version3.3.0sg
CiscoIos Xe Version3.3.1s
CiscoIos Xe Version3.3.2s
CiscoIos Xe Version3.3.3s
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.8% 0.73
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:N/A:C
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.