CVE-2015-6392

EPSS 1.34%
Published 06.10.2016 01:59:01
Last modified 12.04.2025 10:46:40
Source psirt@cisco.com
Teams watchlist Login
Open Login

Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted IPv4 DHCP packets to the (1) DHCPv4 relay agent or (2) smart relay agent, aka Bug IDs CSCuq24603, CSCur93159, CSCus21693, and CSCut76171.

Affected products Warnungen 0 Metrics 3 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Nx-os Versionbase

   Cisco ≫ Nexus 7000 10-slot Version-
   Cisco ≫ Nexus 7000 18-slot Version-
   Cisco ≫ Nexus 7000 4-slot Version-
   Cisco ≫ Nexus 7000 9-slot Version-
   Cisco ≫ Nexus 7700 10-slot Version-
   Cisco ≫ Nexus 7700 18-slot Version-
   Cisco ≫ Nexus 7700 2-slot Version-
   Cisco ≫ Nexus 7700 6-slot Version-

Cisco ≫ Nx-os Versionbase

Cisco ≫ Nexus 6001 Version-
Cisco ≫ Nexus 6004 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.34%	0.781

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161005-dhcp1

Vendor Advisory

http://www.securityfocus.com/bid/93406

http://www.securitytracker.com/id/1036948

https://nvd.nist.gov/vuln/detail/CVE-2015-6392

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2015-6392

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2015-6392

EUVD