CVE-2015-0631

CVSS v2.0 7.1 HIGH

7.1^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 8.6 / Impact : 6.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

R

ace condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.

References

Link	Resource
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631	Vendor Advisory
http://www.securityfocus.com/bid/72700
http://www.securitytracker.com/id/1031780
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631	Vendor Advisory
http://www.securityfocus.com/bid/72700
http://www.securitytracker.com/id/1031780

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:cisco:ips_sensor_software:7.2\(1\)e4:::::::*
	cpe:2.3:a:cisco:ips_sensor_software:7.2\(2\)e4:::::::*

OR	cpe:2.3:h:cisco:ids_4210::::::::
	cpe:2.3:h:cisco:ids_4215::::::::
	cpe:2.3:h:cisco:ids_4220::::::::
	cpe:2.3:h:cisco:ids_4230::::::::
	cpe:2.3:h:cisco:ids_4235::::::::
	cpe:2.3:h:cisco:ids_4250::::::::
	cpe:2.3:h:cisco:ids_4250_xl::::::::
	cpe:2.3:h:cisco:ips_4240::::::::
	cpe:2.3:h:cisco:ips_4255::::::::
	cpe:2.3:h:cisco:ips_4260::::::::
	cpe:2.3:h:cisco:ips_4270::::::::

History

21 Nov 2024, 02:23

Type	Values Removed	Values Added
References	~~() http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631 - Vendor Advisory~~	() http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631 - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/72700 -~~	() http://www.securityfocus.com/bid/72700 -
References	~~() http://www.securitytracker.com/id/1031780 -~~	() http://www.securitytracker.com/id/1031780 -

Information

Published : 2015-02-21 11:59

Updated : 2025-04-12 10:46

NVD link : CVE-2015-0631

Mitre link : CVE-2015-0631

CVE.ORG link : CVE-2015-0631

JSON object : View

Products Affected

CWE

CWE-362

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

{"id": "CVE-2015-0631", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "[email protected]", "cvssData": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-02-21T11:59:04.027", "references": [{"url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "http://www.securityfocus.com/bid/72700", "source": "[email protected]"}, {"url": "http://www.securitytracker.com/id/1031780", "source": "[email protected]"}, {"url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/72700", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id/1031780", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-362"}]}], "descriptions": [{"lang": "en", "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."}, {"lang": "es", "value": "Condici\u00f3n de carrera en la implementaci\u00f3n SSL en los dispositivos Cisco Intrusion Prevention System (IPS) permite a atacantes remotos causar una denegaci\u00f3n de servicio al hacer muchas conexiones HTTPS de la interfaz de gesti\u00f3n durante la fase de la regeneraci\u00f3n de claves de una actualizaci\u00f3n, tambi\u00e9n conocido como Bug ID CSCui25688."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(1\\)e4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC0E024F-9E6A-4CC3-AA35-71D919FFE422"}, {"criteria": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(2\\)e4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EEE4ECF3-881A-43A5-BBE2-4DCACD399EC5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F16322D-1B9A-4378-8A19-AD108FAC7D07"}, {"criteria": "cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79D91EA2-CD3F-4C3C-B052-72ADDE6D79A3"}, {"criteria": "cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "56161609-806D-4FF6-9B0B-E2AD491D7066"}, {"criteria": "cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E021E32E-F237-4249-BC22-7226FDD158D1"}, {"criteria": "cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "909D1328-04C6-4870-B7BA-6ED45F15FF38"}, {"criteria": "cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10446949-EDCA-4775-B8CA-AB8FC32B8EF6"}, {"criteria": "cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24ABF6DE-3A80-4D1D-801E-20F5CF26C68A"}, {"criteria": "cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "661A7A3E-09E3-44DA-AEB5-8021BCEF30EF"}, {"criteria": "cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4A2BCB3B-CE33-4B96-A125-8E7001845A5C"}, {"criteria": "cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1C3637DA-60C8-4F15-8906-F67ADA344A18"}, {"criteria": "cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "78AE85C6-12A9-4FF6-84CD-C9A197A846F4"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}