What is the severity of CVE-2015-0637?

CVE-2015-0637 has a critical severity rating due to its potential for remote denial of service.

How do I fix CVE-2015-0637?

To mitigate CVE-2015-0637, upgrade to a fixed version of the Cisco IOS or IOS XE software recommended in the advisory.

Which software versions are affected by CVE-2015-0637?

CVE-2015-0637 impacts Cisco IOS versions 12.2, 12.4, 15.0, 15.2, 15.3, 15.4, and IOS XE versions 3.10.xS through 3.13.xS prior to 3.13.1S.

What type of vulnerability is CVE-2015-0637?

CVE-2015-0637 is a remote denial of service vulnerability that allows attackers to cause a device reload.

What are the potential impacts of CVE-2015-0637?

The primary impact of CVE-2015-0637 is a denial of service that can disrupt network operations by forcing device reloads.

Vulnerability/
CVE-2015-0637

high

7.8

CWE

26/3/2015

1/10/2015

CVE-2015-0637: Input Validation

First published: Thu Mar 26 2015(Updated: )

The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) via spoofed AN messages, aka Bug ID CSCup62315.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS XE Web UI	=3.10s.0
Cisco IOS XE Web UI	=3.10s.1
Cisco IOS XE Web UI	=3.10s.2
Cisco IOS XE Web UI	=3.10s.3
Cisco IOS XE Web UI	=3.10s.4
Cisco IOS XE Web UI	=3.11s.0
Cisco IOS XE Web UI	=3.11s.1
Cisco IOS XE Web UI	=3.11s.2
Cisco IOS XE Web UI	=3.11s.3
Cisco IOS XE Web UI	=3.12s.0
Cisco IOS XE Web UI	=3.12s.1
Cisco IOS XE Web UI	=3.12s.2
Cisco IOS XE Web UI	=3.13s.0
Cisco IOS	=12.2\(33\)ird1
Cisco IOS	=12.2\(33\)ire3
Cisco IOS	=12.2\(33\)sxi4b
Cisco IOS	=12.2\(44\)sq1
Cisco IOS	=12.4\(25e\)jam1
Cisco IOS	=12.4\(25e\)jap1m
Cisco IOS	=12.4\(25e\)jaz1
Cisco IOS	=15.0\(2\)ed1
Cisco IOS	=15.2\(1\)ex
Cisco IOS	=15.2\(2\)jb1
Cisco IOS	=15.3\(2\)s2
Cisco IOS	=15.3\(3\)ja1n
Cisco IOS	=15.3\(3\)jab1
Cisco IOS	=15.3\(3\)jn
Cisco IOS	=15.3\(3\)jnb
Cisco IOS	=15.3\(3\)s
Cisco IOS	=15.3\(3\)s1
Cisco IOS	=15.3\(3\)s2
Cisco IOS	=15.3\(3\)s3
Cisco IOS	=15.3\(3\)s4
Cisco IOS	=15.4\(1\)s
Cisco IOS	=15.4\(1\)s1
Cisco IOS	=15.4\(1\)s2
Cisco IOS	=15.4\(1\)s3
Cisco IOS	=15.4\(2\)s
Cisco IOS	=15.4\(2\)s1
Cisco IOS	=15.4\(2\)s2
Cisco IOS	=15.4\(3\)s

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-0637?
CVE-2015-0637 has a critical severity rating due to its potential for remote denial of service.
How do I fix CVE-2015-0637?
To mitigate CVE-2015-0637, upgrade to a fixed version of the Cisco IOS or IOS XE software recommended in the advisory.
Which software versions are affected by CVE-2015-0637?
CVE-2015-0637 impacts Cisco IOS versions 12.2, 12.4, 15.0, 15.2, 15.3, 15.4, and IOS XE versions 3.10.xS through 3.13.xS prior to 3.13.1S.
What type of vulnerability is CVE-2015-0637?
CVE-2015-0637 is a remote denial of service vulnerability that allows attackers to cause a device reload.
What are the potential impacts of CVE-2015-0637?
The primary impact of CVE-2015-0637 is a denial of service that can disrupt network operations by forcing device reloads.

agent/severity
agent/references
agent/description
agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
agent/tags
agent/last-modified-date
collector/nvd-index
agent/software-canonical-lookup-request
agent/weakness
agent/author
vendor/cisco
canonical/cisco ios xe web ui
version/cisco ios xe web ui/3.10s.0
version/cisco ios xe web ui/3.10s.1
version/cisco ios xe web ui/3.10s.2
version/cisco ios xe web ui/3.10s.3
version/cisco ios xe web ui/3.10s.4
version/cisco ios xe web ui/3.11s.0
version/cisco ios xe web ui/3.11s.1
version/cisco ios xe web ui/3.11s.2
version/cisco ios xe web ui/3.11s.3
version/cisco ios xe web ui/3.12s.0
version/cisco ios xe web ui/3.12s.1
version/cisco ios xe web ui/3.12s.2
version/cisco ios xe web ui/3.13s.0
canonical/cisco ios
version/cisco ios/12.2\(33\)ird1
version/cisco ios/12.2\(33\)ire3
version/cisco ios/12.2\(33\)sxi4b
version/cisco ios/12.2\(44\)sq1
version/cisco ios/12.4\(25e\)jam1
version/cisco ios/12.4\(25e\)jap1m
version/cisco ios/12.4\(25e\)jaz1
version/cisco ios/15.0\(2\)ed1
version/cisco ios/15.2\(1\)ex
version/cisco ios/15.2\(2\)jb1
version/cisco ios/15.3\(2\)s2
version/cisco ios/15.3\(3\)ja1n
version/cisco ios/15.3\(3\)jab1
version/cisco ios/15.3\(3\)jn
version/cisco ios/15.3\(3\)jnb
version/cisco ios/15.3\(3\)s
version/cisco ios/15.3\(3\)s1
version/cisco ios/15.3\(3\)s2
version/cisco ios/15.3\(3\)s3
version/cisco ios/15.3\(3\)s4
version/cisco ios/15.4\(1\)s
version/cisco ios/15.4\(1\)s1
version/cisco ios/15.4\(1\)s2
version/cisco ios/15.4\(1\)s3
version/cisco ios/15.4\(2\)s
version/cisco ios/15.4\(2\)s1
version/cisco ios/15.4\(2\)s2
version/cisco ios/15.4\(3\)s

Frequently Asked Questions

What is the severity of CVE-2015-0637?
CVE-2015-0637 has a critical severity rating due to its potential for remote denial of service.
How do I fix CVE-2015-0637?
To mitigate CVE-2015-0637, upgrade to a fixed version of the Cisco IOS or IOS XE software recommended in the advisory.
Which software versions are affected by CVE-2015-0637?
CVE-2015-0637 impacts Cisco IOS versions 12.2, 12.4, 15.0, 15.2, 15.3, 15.4, and IOS XE versions 3.10.xS through 3.13.xS prior to 3.13.1S.
What type of vulnerability is CVE-2015-0637?
CVE-2015-0637 is a remote denial of service vulnerability that allows attackers to cause a device reload.
What are the potential impacts of CVE-2015-0637?
The primary impact of CVE-2015-0637 is a denial of service that can disrupt network operations by forcing device reloads.

CVE-2015-0637: Input Validation

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2015-0637?

How do I fix CVE-2015-0637?

Which software versions are affected by CVE-2015-0637?

What type of vulnerability is CVE-2015-0637?

What are the potential impacts of CVE-2015-0637?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2015-0637?

How do I fix CVE-2015-0637?

Which software versions are affected by CVE-2015-0637?

What type of vulnerability is CVE-2015-0637?

What are the potential impacts of CVE-2015-0637?