CVE-2013-6706
Severity Score
5.4
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Cisco Express Forwarding processing module in Cisco IOS XE allows remote attackers to cause a denial of service (device reload) via crafted MPLS packets that are not properly handled during IP header validation, aka Bug ID CSCuj23992.
El módulo de procesamiento Cisco Express Forwarding en Cisco IOS XE permite a atacantes remotos provocar una denegación servicio (reinicio del dispositivo) a través de paquetes MPLS que no son manejados adecuadamente durante una validación de cabecera IP, también conocido como ID CSCuj23992.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2013-11-07 CVE Reserved
- 2013-11-29 CVE Published
- 2023-07-11 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/100394 | Vdb Entry | |
| http://secunia.com/advisories/55817 | Third Party Advisory | |
| http://www.securityfocus.com/bid/63979 | Third Party Advisory | |
| http://www.securitytracker.com/id/1029407 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-6706 | 2016-11-02 | |
| http://tools.cisco.com/security/center/viewAlert.x?alertId=31950 | 2016-11-02 |