CVE-2015-6392

EPSS 1.34%
Veröffentlicht 06.10.2016 01:59:01
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted IPv4 DHCP packets to the (1) DHCPv4 relay agent or (2) smart relay agent, aka Bug IDs CSCuq24603, CSCur93159, CSCus21693, and CSCut76171.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Nx-os Versionbase

   Cisco ≫ Nexus 7000 10-slot Version-
   Cisco ≫ Nexus 7000 18-slot Version-
   Cisco ≫ Nexus 7000 4-slot Version-
   Cisco ≫ Nexus 7000 9-slot Version-
   Cisco ≫ Nexus 7700 10-slot Version-
   Cisco ≫ Nexus 7700 18-slot Version-
   Cisco ≫ Nexus 7700 2-slot Version-
   Cisco ≫ Nexus 7700 6-slot Version-

Cisco ≫ Nx-os Versionbase

Cisco ≫ Nexus 6001 Version-
Cisco ≫ Nexus 6004 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.34%	0.781

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp1

Vendor Advisory

http://www.securityfocus.com/bid/93406

http://www.securitytracker.com/id/1036948

https://nvd.nist.gov/vuln/detail/CVE-2015-6392

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6392

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6392

EUVD