Denial of Service Vulnerability in Cisco ASR 5500 Gateway Devices
CVE-2015-0617

Currently unrated

Key Information:

Vendor: Cisco
Status: Asr 5000 Series Software
Vendor: CVE Published:; 18 February 2015

Summary

Cisco ASR 5500 System Architecture Evolution (SAE) Gateway devices are susceptible to a denial of service (DoS) attack when they receive malformed SNMP packets. This vulnerability enables remote attackers to exhaust CPU resources and disrupt SNMP functionality, resulting in operational degradation. The flaw is tracked under Bug ID CSCur13393 and underscores the importance of robust input validation to prevent such vulnerabilities from being exploited.

References

http://www.securitytracker.com/id/1031754

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/100923

vdb-entryx_refsource_XF

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Feb 18, 2015
Vulnerability Reserved
Jan 7, 2015