Denial of Service Vulnerability in Cisco IOS Devices
CVE-2012-5017

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios; Asr 1001; Asr 1002; Asr 1002-x
Vendor: CVE Published:; 23 April 2014

Summary

A vulnerability in Cisco IOS software allows remote authenticated users to trigger a denial of service by initiating a VPN session and sending malformed IKEv2 packets. This can cause the affected device to reload unexpectedly, which may lead to service interruptions and operational challenges. The issue affects Cisco IOS versions prior to 15.1(1)SY1, making it crucial for users to update their systems to mitigate this risk and maintain network stability.

References

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalys...

x_refsource_CONFIRM

Timeline

Vulnerability published
Apr 23, 2014
Vulnerability Reserved
Sep 21, 2012