Vulnerability-Lookup

CVE-2015-0631 (GCVE-0-2015-0631)

Vulnerability from cvelistv5 – Published: 2015-02-21 11:00 – Updated: 2024-08-06 04:17

Summary

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

	http://tools.cisco.com/security/center/content/Ci…	vendor-advisoryx_refsource_CISCO
	http://www.securityfocus.com/bid/72700	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1031780	vdb-entryx_refsource_SECTRACK

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T04:17:32.574Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
          },
          {
            "name": "72700",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/72700"
          },
          {
            "name": "1031780",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1031780"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2015-02-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2015-02-27T14:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
        },
        {
          "name": "72700",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/72700"
        },
        {
          "name": "1031780",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1031780"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2015-0631",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
            },
            {
              "name": "72700",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/72700"
            },
            {
              "name": "1031780",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1031780"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2015-0631",
    "datePublished": "2015-02-21T11:00:00",
    "dateReserved": "2015-01-07T00:00:00",
    "dateUpdated": "2024-08-06T04:17:32.574Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:ips_sensor_software:7.2\\\\(1\\\\)e4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC0E024F-9E6A-4CC3-AA35-71D919FFE422\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:ips_sensor_software:7.2\\\\(2\\\\)e4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EEE4ECF3-881A-43A5-BBE2-4DCACD399EC5\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F16322D-1B9A-4378-8A19-AD108FAC7D07\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79D91EA2-CD3F-4C3C-B052-72ADDE6D79A3\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56161609-806D-4FF6-9B0B-E2AD491D7066\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E021E32E-F237-4249-BC22-7226FDD158D1\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"909D1328-04C6-4870-B7BA-6ED45F15FF38\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10446949-EDCA-4775-B8CA-AB8FC32B8EF6\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24ABF6DE-3A80-4D1D-801E-20F5CF26C68A\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"661A7A3E-09E3-44DA-AEB5-8021BCEF30EF\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4A2BCB3B-CE33-4B96-A125-8E7001845A5C\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C3637DA-60C8-4F15-8906-F67ADA344A18\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"78AE85C6-12A9-4FF6-84CD-C9A197A846F4\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.\"}, {\"lang\": \"es\", \"value\": \"Condici\\u00f3n de carrera en la implementaci\\u00f3n SSL en los dispositivos Cisco Intrusion Prevention System (IPS) permite a atacantes remotos causar una denegaci\\u00f3n de servicio al hacer muchas conexiones HTTPS de la interfaz de gesti\\u00f3n durante la fase de la regeneraci\\u00f3n de claves de una actualizaci\\u00f3n, tambi\\u00e9n conocido como Bug ID CSCui25688.\"}]",
      "id": "CVE-2015-0631",
      "lastModified": "2024-11-21T02:23:26.210",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.1, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2015-02-21T11:59:04.027",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/72700\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://www.securitytracker.com/id/1031780\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/72700\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id/1031780\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-362\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2015-0631\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2015-02-21T11:59:04.027\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.\"},{\"lang\":\"es\",\"value\":\"Condici\u00f3n de carrera en la implementaci\u00f3n SSL en los dispositivos Cisco Intrusion Prevention System (IPS) permite a atacantes remotos causar una denegaci\u00f3n de servicio al hacer muchas conexiones HTTPS de la interfaz de gesti\u00f3n durante la fase de la regeneraci\u00f3n de claves de una actualizaci\u00f3n, tambi\u00e9n conocido como Bug ID CSCui25688.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:C\",\"baseScore\":7.1,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-362\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ips_sensor_software:7.2\\\\(1\\\\)e4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC0E024F-9E6A-4CC3-AA35-71D919FFE422\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ips_sensor_software:7.2\\\\(2\\\\)e4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EEE4ECF3-881A-43A5-BBE2-4DCACD399EC5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F16322D-1B9A-4378-8A19-AD108FAC7D07\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79D91EA2-CD3F-4C3C-B052-72ADDE6D79A3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56161609-806D-4FF6-9B0B-E2AD491D7066\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E021E32E-F237-4249-BC22-7226FDD158D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"909D1328-04C6-4870-B7BA-6ED45F15FF38\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10446949-EDCA-4775-B8CA-AB8FC32B8EF6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24ABF6DE-3A80-4D1D-801E-20F5CF26C68A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"661A7A3E-09E3-44DA-AEB5-8021BCEF30EF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4A2BCB3B-CE33-4B96-A125-8E7001845A5C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C3637DA-60C8-4F15-8906-F67ADA344A18\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78AE85C6-12A9-4FF6-84CD-C9A197A846F4\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/72700\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://www.securitytracker.com/id/1031780\",\"source\":\"psirt@cisco.com\"},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/72700\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1031780\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GSD-2015-0631

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2015-0631

Aliases

CVE-2015-0631

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-0631",
    "description": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.",
    "id": "GSD-2015-0631"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-0631"
      ],
      "details": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.",
      "id": "GSD-2015-0631",
      "modified": "2023-12-13T01:19:58.394290Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2015-0631",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
          },
          {
            "name": "72700",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/72700"
          },
          {
            "name": "1031780",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1031780"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(1\\)e4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(2\\)e4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2015-0631"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-362"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20150220 Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
            },
            {
              "name": "72700",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/72700"
            },
            {
              "name": "1031780",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1031780"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2015-03-04T17:14Z",
      "publishedDate": "2015-02-21T11:59Z"
    }
  }
}

VAR-201502-0155

Vulnerability from variot - Updated: 2023-12-18 13:03

Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688. Vendors have confirmed this vulnerability Bug ID CSCui25688 It is released as.During the phase of replaying the upgrade key by a third party, HTTPS Service disruption by establishing a connection (DoS) There is a possibility of being put into a state. Cisco Intrusion Prevention System is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCui25688. The system can immediately interrupt, adjust or isolate some abnormal or harmful network data transmission behaviors

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201502-0155",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "ips sensor software",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.2\\(1\\)e4"
      },
      {
        "model": "ips sensor software",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.2\\(2\\)e4"
      },
      {
        "model": "ids 4210",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4215",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4220",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4230",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4235",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4250",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ids 4250 xl",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ips 4240",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ips 4255",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ips 4260",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ips 4270",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ips software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.2(1)e4"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(1\\)e4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(2\\)e4:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "72700"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2015-0631",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Medium",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 7.1,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2015-0631",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 8.6,
            "id": "VHN-78577",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2015-0631",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201502-378",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-78577",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688. Vendors have confirmed this vulnerability Bug ID CSCui25688 It is released as.During the phase of replaying the upgrade key by a third party, HTTPS Service disruption by establishing a connection (DoS) There is a possibility of being put into a state. Cisco Intrusion Prevention System is prone to a remote denial-of-service vulnerability. \nAttackers can exploit this issue to cause denial-of-service conditions. \nThis issue is being tracked by Cisco Bug ID CSCui25688. The system can immediately interrupt, adjust or isolate some abnormal or harmful network data transmission behaviors",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "BID",
        "id": "72700"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      }
    ],
    "trust": 1.98
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2015-0631",
        "trust": 2.8
      },
      {
        "db": "BID",
        "id": "72700",
        "trust": 1.4
      },
      {
        "db": "SECTRACK",
        "id": "1031780",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378",
        "trust": 0.7
      },
      {
        "db": "VULHUB",
        "id": "VHN-78577",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "db": "BID",
        "id": "72700"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "id": "VAR-201502-0155",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T13:03:28.430000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Cisco Intrusion Prevention System Key Regeneration HTTPS Denial of Service Vulnerability",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2015-0631"
      },
      {
        "title": "37540",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=37540"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-362",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2015-0631"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/bid/72700"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id/1031780"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0631"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0631"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "db": "BID",
        "id": "72700"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "db": "BID",
        "id": "72700"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-02-21T00:00:00",
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "date": "2015-02-20T00:00:00",
        "db": "BID",
        "id": "72700"
      },
      {
        "date": "2015-02-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "date": "2015-02-21T11:59:04.027000",
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "date": "2015-02-26T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-03-04T00:00:00",
        "db": "VULHUB",
        "id": "VHN-78577"
      },
      {
        "date": "2015-02-20T00:00:00",
        "db": "BID",
        "id": "72700"
      },
      {
        "date": "2015-02-25T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      },
      {
        "date": "2015-03-04T17:14:15.987000",
        "db": "NVD",
        "id": "CVE-2015-0631"
      },
      {
        "date": "2015-02-26T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Intrusion Prevention System Runs on the device  SSL Service disruption in implementations  (DoS) Vulnerabilities",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-001579"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "competitive condition",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201502-378"
      }
    ],
    "trust": 0.6
  }
}

CNVD-2015-01220

Vulnerability from cnvd - Published: 2015-02-27

Title

Cisco Intrusion Prevention System密钥生成HTTPS拒绝服务漏洞

Description

Cisco Intrusion Prevention System是一款入侵防御系统。 Cisco Intrusion Prevention System WEB接口使用的SSL/TLS子系统生成受影响设备加密证书和密钥时存在竞争条件漏洞，允许攻击者利用漏洞提交特殊请求进行拒绝服务攻击。

Severity

中

Patch Name

Cisco Intrusion Prevention System密钥生成HTTPS拒绝服务漏洞的补丁

Patch Description

Cisco Intrusion Prevention System是一款入侵防御系统。 Cisco Intrusion Prevention System WEB接口使用的SSL/TLS子系统生成受影响设备加密证书和密钥时存在竞争条件漏洞，允许攻击者利用漏洞提交特殊请求进行拒绝服务攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： https://tools.cisco.com/bugsearch/bug/CSCui25688

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631

Impacted products

Name
Cisco Intrusion Prevention System (IPS)

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "72700"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-0631"
    }
  },
  "description": "Cisco Intrusion Prevention System\u662f\u4e00\u6b3e\u5165\u4fb5\u9632\u5fa1\u7cfb\u7edf\u3002\r\n\r\nCisco Intrusion Prevention System WEB\u63a5\u53e3\u4f7f\u7528\u7684SSL/TLS\u5b50\u7cfb\u7edf\u751f\u6210\u53d7\u5f71\u54cd\u8bbe\u5907\u52a0\u5bc6\u8bc1\u4e66\u548c\u5bc6\u94a5\u65f6\u5b58\u5728\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttps://tools.cisco.com/bugsearch/bug/CSCui25688",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-01220",
  "openTime": "2015-02-27",
  "patchDescription": "Cisco Intrusion Prevention System\u662f\u4e00\u6b3e\u5165\u4fb5\u9632\u5fa1\u7cfb\u7edf\u3002\r\n\r\nCisco Intrusion Prevention System WEB\u63a5\u53e3\u4f7f\u7528\u7684SSL/TLS\u5b50\u7cfb\u7edf\u751f\u6210\u53d7\u5f71\u54cd\u8bbe\u5907\u52a0\u5bc6\u8bc1\u4e66\u548c\u5bc6\u94a5\u65f6\u5b58\u5728\u7ade\u4e89\u6761\u4ef6\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Intrusion Prevention System\u5bc6\u94a5\u751f\u6210HTTPS\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Intrusion Prevention System (IPS)"
  },
  "referenceLink": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631",
  "serverity": "\u4e2d",
  "submitTime": "2015-02-21",
  "title": "Cisco Intrusion Prevention System\u5bc6\u94a5\u751f\u6210HTTPS\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

FKIE_CVE-2015-0631

Vulnerability from fkie_nvd - Published: 2015-02-21 11:59 - Updated: 2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631	Vendor Advisory
psirt@cisco.com	http://www.securityfocus.com/bid/72700
psirt@cisco.com	http://www.securitytracker.com/id/1031780
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/72700
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1031780

Impacted products

Vendor	Product	Version
cisco	ips_sensor_software	7.2\(1\)e4
cisco	ips_sensor_software	7.2\(2\)e4
cisco	ids_4210	*
cisco	ids_4215	*
cisco	ids_4220	*
cisco	ids_4230	*
cisco	ids_4235	*
cisco	ids_4250	*
cisco	ids_4250_xl	*
cisco	ips_4240	*
cisco	ips_4255	*
cisco	ips_4260	*
cisco	ips_4270	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(1\\)e4:*:*:*:*:*:*:*",
              "matchCriteriaId": "FC0E024F-9E6A-4CC3-AA35-71D919FFE422",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:ips_sensor_software:7.2\\(2\\)e4:*:*:*:*:*:*:*",
              "matchCriteriaId": "EEE4ECF3-881A-43A5-BBE2-4DCACD399EC5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:ids_4210:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F16322D-1B9A-4378-8A19-AD108FAC7D07",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4215:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "79D91EA2-CD3F-4C3C-B052-72ADDE6D79A3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4220:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "56161609-806D-4FF6-9B0B-E2AD491D7066",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4230:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E021E32E-F237-4249-BC22-7226FDD158D1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4235:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "909D1328-04C6-4870-B7BA-6ED45F15FF38",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4250:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "10446949-EDCA-4775-B8CA-AB8FC32B8EF6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ids_4250_xl:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "24ABF6DE-3A80-4D1D-801E-20F5CF26C68A",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ips_4240:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "661A7A3E-09E3-44DA-AEB5-8021BCEF30EF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ips_4255:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4A2BCB3B-CE33-4B96-A125-8E7001845A5C",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ips_4260:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C3637DA-60C8-4F15-8906-F67ADA344A18",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:ips_4270:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "78AE85C6-12A9-4FF6-84CD-C9A197A846F4",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688."
    },
    {
      "lang": "es",
      "value": "Condici\u00f3n de carrera en la implementaci\u00f3n SSL en los dispositivos Cisco Intrusion Prevention System (IPS) permite a atacantes remotos causar una denegaci\u00f3n de servicio al hacer muchas conexiones HTTPS de la interfaz de gesti\u00f3n durante la fase de la regeneraci\u00f3n de claves de una actualizaci\u00f3n, tambi\u00e9n conocido como Bug ID CSCui25688."
    }
  ],
  "id": "CVE-2015-0631",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.1,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-02-21T11:59:04.027",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securityfocus.com/bid/72700"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securitytracker.com/id/1031780"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/72700"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1031780"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-362"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-J55M-HP7R-R977

Vulnerability from github – Published: 2022-05-17 04:15 – Updated: 2022-05-17 04:15

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-0631"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-362"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-02-21T11:59:00Z",
    "severity": "HIGH"
  },
  "details": "Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.",
  "id": "GHSA-j55m-hp7r-r977",
  "modified": "2022-05-17T04:15:16Z",
  "published": "2022-05-17T04:15:16Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0631"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0631"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/72700"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1031780"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2015-0631 (GCVE-0-2015-0631)

GSD-2015-0631

VAR-201502-0155

CNVD-2015-01220

FKIE_CVE-2015-0631

GHSA-J55M-HP7R-R977

Tags

Sightings

Nomenclature