{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-03-25T00:00:00", "descriptions": [{"lang": "en", "value": "Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum94811."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-05-11T09:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20150325 Cisco IOS Software and IOS XE Software TCP Packet Memory Leak Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak"}, {"name": "73340", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/73340"}, {"name": "1031980", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031980"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2015-0646", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum94811."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20150325 Cisco IOS Software and IOS XE Software TCP Packet Memory Leak Vulnerability", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak"}, {"name": "73340", "refsource": "BID", "url": "http://www.securityfocus.com/bid/73340"}, {"name": "1031980", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031980"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T04:17:32.508Z"}, "title": "CVE Program Container", "references": [{"name": "20150325 Cisco IOS Software and IOS XE Software TCP Packet Memory Leak Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak"}, {"name": "73340", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/73340"}, {"name": "1031980", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031980"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2015-0646", "datePublished": "2015-03-26T10:00:00", "dateReserved": "2015-01-07T00:00:00", "dateUpdated": "2024-08-06T04:17:32.508Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:3.3xo.0:*:*:*:*:*:*:*", "matchCriteriaId": "1AB6BACF-3873-4BB6-BA66-36738FCA923D", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3xo.1:*:*:*:*:*:*:*", "matchCriteriaId": "46DC4966-88F0-42D1-96BF-3C42151675FB", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.3xo.2:*:*:*:*:*:*:*", "matchCriteriaId": "9397ACA7-80F5-4269-B0FC-52DC01DD74A8", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5e.0:*:*:*:*:*:*:*", "matchCriteriaId": "1A7115B2-6AB0-4D69-999C-E5E11CAA5D57", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5e.1:*:*:*:*:*:*:*", "matchCriteriaId": "040B4351-C0C5-4B3C-9BA4-9C44BFDCABA8", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5e.2:*:*:*:*:*:*:*", "matchCriteriaId": "586C30AE-C1DD-45EE-8745-0E800533BE9A", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.5e.3:*:*:*:*:*:*:*", "matchCriteriaId": "84D80DBE-BF81-4E61-8451-97329F77E2CB", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6e.0:*:*:*:*:*:*:*", "matchCriteriaId": "60E894C8-CF2E-4933-99C7-E45E8F9076BC", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6e.1:*:*:*:*:*:*:*", "matchCriteriaId": "3FFBC8FE-981D-4B3F-8734-F54508043F6C", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.0:*:*:*:*:*:*:*", "matchCriteriaId": "E9A1B891-8AB7-493C-93FF-3D1FA5DFA19A", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.1:*:*:*:*:*:*:*", "matchCriteriaId": "20BF8AA3-610B-4168-922D-2847958EFFA5", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s.2:*:*:*:*:*:*:*", "matchCriteriaId": "6E6BBADF-5DAF-41CE-B6CC-5D7E498E085B", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.8s_base:*:*:*:*:*:*:*", "matchCriteriaId": "06751A45-58D2-4C57-AD53-FA933D530A61", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.0:*:*:*:*:*:*:*", "matchCriteriaId": "AEA1B7A4-6B48-4D0C-BA58-EE0E34DDB07E", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.1:*:*:*:*:*:*:*", "matchCriteriaId": "FF17206A-27BA-4914-8BB5-4F031D88EA4A", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.9s.2:*:*:*:*:*:*:*", "matchCriteriaId": "AEC4E92B-1752-438D-BF43-4D93938C6776", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0:*:*:*:*:*:*:*", "matchCriteriaId": "5C1C77A7-FCD5-4558-A351-081D6678DB21", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.0a:*:*:*:*:*:*:*", "matchCriteriaId": "A9B42071-2BAA-4459-B575-EBD72A111381", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.1:*:*:*:*:*:*:*", "matchCriteriaId": "24C948D8-C540-4FF1-A9F7-BFB20E5541FE", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.2:*:*:*:*:*:*:*", "matchCriteriaId": "7AF1294B-B4F6-40CC-A115-942B18CDA361", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.3:*:*:*:*:*:*:*", "matchCriteriaId": "B72E6572-FF41-4606-9DA5-FA486D591A58", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.10s.4:*:*:*:*:*:*:*", "matchCriteriaId": "B74B72D9-AB41-4D98-BEF5-3CA37F68F645", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.0:*:*:*:*:*:*:*", "matchCriteriaId": "C0A98DFE-18FF-455A-AFA6-49960CB98C85", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.1:*:*:*:*:*:*:*", "matchCriteriaId": "277C9543-A842-45AB-A2EF-DB2F8412D748", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.2:*:*:*:*:*:*:*", "matchCriteriaId": "6C942D30-8344-425E-804E-E1BB1F1F0D22", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.3:*:*:*:*:*:*:*", "matchCriteriaId": "C7382973-7673-4D6E-8716-AFDE2EB04C94", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.11s.4:*:*:*:*:*:*:*", "matchCriteriaId": "C0E4E52A-94F6-4F67-9458-9C5BDD51C7B0", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.0:*:*:*:*:*:*:*", "matchCriteriaId": "E5E6FF1A-D90D-412A-8159-E766DC14FA57", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.12s.1:*:*:*:*:*:*:*", "matchCriteriaId": "84E6DEE6-50EF-4333-B0B9-964A633734D1", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*", "matchCriteriaId": "E4BC49F2-3DCB-45F0-9030-13F6415EE178", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*", "matchCriteriaId": "9D4D8C72-E7BB-40BF-9AE5-622794D63E09", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*", "matchCriteriaId": "CF87CC9A-1AF5-4DB4-ACE5-DB938D3B2F84", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*", "matchCriteriaId": "EB41294E-F3DF-4F1E-A4C8-E90B21A88836", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:15.2:*:*:*:*:*:*:*", "matchCriteriaId": "C2AB6A02-B7C7-48D1-8857-BD1CDF9A40D8", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:15.3:*:*:*:*:*:*:*", "matchCriteriaId": "B870F917-9F35-41AE-8CCA-D8574189C7EC", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios:15.4:*:*:*:*:*:*:*", "matchCriteriaId": "7D549F66-13E6-4AB0-972D-6F7FE6DB82DB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum94811."}, {"lang": "es", "value": "Fuga de memoria en el m\u00f3dulo de entradas de TCP en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS hasta 3.10.xS anterior a 3.10.5S, y 3.11.xS y 3.12.xS anterior a 3.12.3S permite a atacantes remotos causar una denegaci\u00f3n de servicio (consumo de memoria o recarga de dispositivo) mediante el env\u00edo de paquetes TCP por (1) IPv4 o (2) IPv6, tambi\u00e9n conocido como Bug ID CSCum94811."}], "id": "CVE-2015-0646", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-03-26T10:59:11.613", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak"}, {"source": "psirt@cisco.com", "url": "http://www.securityfocus.com/bid/73340"}, {"source": "psirt@cisco.com", "url": "http://www.securitytracker.com/id/1031980"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/73340"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1031980"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}