Improper input validation in Cisco Asr_5000_series_software
CVE-2015-4201
The Gateway General Packet Radio Service Support Node (GGSN) component on Cisco ASR 5000 devices with software 17.2.0.59184 and 18.0.L0.59219 allows remote attackers to cause a denial of service (Session Manager restart) via an invalid TCP…
Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)
EPSS: 0.008 (73.7th percentile) — read the EPSS interpretation.
Affected products
- Cisco Asr_5000_series_software — versions 17.2.0.59184, 18.0.l059219
- N/a — versions n/a
Weakness classification (CWE)
References
- 1032677 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
- 75323 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
- 20150619 Cisco Gateway GPRS Support Node TCP Invalid Packet Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)