What is CVE-2015-6392?

CVE-2015-6392 is a high-severity vulnerability in Cisco Nexus_5010, classified under CWE-399. CVSS score: 7.5/10. Published 2016-10-06.

How severe is CVE-2015-6392?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Cisco Nexus_5010

CVE-2015-6392

Cisco NX-OS 4.1 through 7.3 and 11.0 through 11.2 on Nexus 2000, 5000, 5500, 5600, 6000, 7000, 7700, and 9000 devices allows remote attackers to cause a denial of service (device crash) via crafted IPv4 DHCP packets to the (1) DHCPv4 relay…

EPSS: 0.013 (80.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Weakness classification (CWE)

CWE-399

References

93406 (vdb-entry, x_refsource_BID)
20161005 Cisco NX-OS Software Crafted DHCPv4 Packet Denial of Service Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
1036948 (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2015-6392?: CVE-2015-6392 is a high-severity vulnerability in Cisco Nexus_5010, classified under CWE-399. CVSS score: 7.5/10. Published 2016-10-06.
How severe is CVE-2015-6392?: High severity. CVSS v3 base score is 7.5 out of 10.