CVE-2015-0654

high Cisco
CVSS v3 Base Score
7.1
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS Score
0.3%
Exploitation probability in 30 days
Top 46% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
None
Integrity
None
Availability
C
Published: March 13, 2015 (4080 days ago)
Last Modified: May 6, 2026
Vendor: Cisco
Source: NVD

Description

Race condition in the TLS implementation in MainApp in the management interface in Cisco Intrusion Prevention System (IPS) Software before 7.3(3)E4 allows remote attackers to cause a denial of service (process hang) by establishing many HTTPS sessions, aka Bug ID CSCuq40652.

CWE

CWE-362

Affected Products

cisco intrusion prevention system

References

🔗 tools.cisco.com 🔗 www.securitytracker.com 🔗 tools.cisco.com 🔗 www.securitytracker.com