cisco-sa-20150311-ips

Cisco Intrusion Prevention System MainApp Secure Socket Layer Denial of Service Vulnerability

cisco-sa-20150311-ips · High · Published 11 years ago · Updated 11 years ago

The Cisco Intrusion Prevention System (IPS) Software has a vulnerability within the SSL/TLS subsystem utilized by the web management interface which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. Cisco has released software updates that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150311-ips

Cisco advisory · CSAF JSON

Workarounds

There is no workaround for this vulnerability.

CVEs	CVE-2015-0654
Cisco Bug IDs	CSCuq40652
CVSS Score	Base 7.1 Base 7.1 AV:N/AC:M/Au:N/C:N/I:N/A:C/E:F/RL:OF/RC:C
Product Names From Source	Cisco Intrusion Prevention System (IPS), Intrusion Prevention System (IPS)

Related Products

Product	CVE	Evidence
Intrusion Prevention System (IPS)	CVE-2015-0654	Cisco OpenVuln
Cisco Intrusion Prevention System (IPS)	CVE-2015-0654	Cisco OpenVuln

Vulnslist

Cisco vulnerabilities by product, model, software, and advisory.

Cisco Intrusion Prevention System MainApp Secure Socket Layer Denial of Service Vulnerability

Workarounds

Related Products