Vulnerability in Cisco Identity_services_engine
CVE-2013-3445
The firewall subsystem in Cisco Identity Services Engine has an incorrect rule for open ports, which allows remote attackers to cause a denial of service (CPU consumption or process crash) via a flood of malformed IP packets, aka Bug ID CS…
EPSS: 0.016 (81.8th percentile) — read the EPSS interpretation.
Affected products
- Cisco Identity_services_engine
- N/a — versions n/a
Weakness classification (CWE)
References
- 95659 (x_refsource_OSVDB, vdb-entry)
- psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
- 61452 (vdb-entry, x_refsource_BID)
- cisco-ise-cve20133445-dos(85982) (vdb-entry, x_refsource_XF)
- 1028837 (vdb-entry, x_refsource_SECTRACK)
- 20130725 Cisco Identity Services Engine High CPU Utilization Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)