Vulnerability CVE-2015-0610

Vulnerability Name:

CVE-2015-0610 (CCN-100807)

Assigned:

2015-02-10

Published:

2015-02-10

Updated:

2017-09-08

Summary:

Race condition in the object-group ACL feature in Cisco IOS 15.5(2)T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSCun21071.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-362

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2015-0610

Source: CCN
Type: Cisco Security Notice
Cisco IOS ACL Bypass Vulnerability

Source: CISCO
Type: Vendor Advisory
20150210 Cisco IOS Software Access Control List Bypass Vulnerability

Source: CONFIRM
Type: Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=37423

Source: BID
Type: UNKNOWN
72565

Source: CCN
Type: BID-72565
Cisco IOS CVE-2015-0610 Security Bypass Vulnerability

Source: SECTRACK
Type: UNKNOWN
1031732

Source: XF
Type: UNKNOWN
ciscoios-cve20150610-sec-bypass(100807)

Source: XF
Type: UNKNOWN
ciscoios-cve20150610-sec-bypass(100807)

Vulnerable Configuration:

Configuration 1:

cpe:/o:cisco:ios:15.5(1)t:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios:15.5(1)t1:*:*:*:*:*:*:*

OR cpe:/o:cisco:ios:*:*:*:*:*:*:*:* (Version <= 15.5(2)t)

OR cpe:/o:cisco:ios:15.5t:*:*:*:*:*:*:*

Denotes that component is vulnerable

BACK