CVE-2015-6278

The IPv6 snooping functionality in the first-hop security subsystem in Cisco IOS 12.2, 15.0, 15.1, 15.2, 15.3, 15.4, and 15.5 and IOS XE 3.2SE, 3.3SE, 3.3XO, 3.4SG, 3.5E, and 3.6E before 3.6.3E; 3.7E before 3.7.2E; 3.9S and 3.10S before 3.10.6S; 3.11S before 3.11.4S; 3.12S and 3.13S before 3.13.3S; and 3.14S before 3.14.2S does not properly implement the Control Plane Protection (aka CPPr) feature, which allows remote attackers to cause a denial of service (device reload) via a flood of ND packets, aka Bug ID CSCus19794.

Published: Sep 28, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-6278
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
cisco / ios	15.4(2)s2	15.4(2)s2.x
cisco / ios_xe	3.11s.2	3.11s.2.x
cisco / ios	15.3(2)s1	15.3(2)s1.x
cisco / ios	12.2(50)sy1	12.2(50)sy1.x
cisco / ios_xe	3.5e.2	3.5e.2.x
cisco / ios	12.2(50)sy4	12.2(50)sy4.x
cisco / ios_xe	3.3xo.2	3.3xo.2.x
cisco / ios_xe	3.2se.1	3.2se.1.x
cisco / ios	15.3(2)s	15.3(2)s.x
cisco / ios	15.0(1)sy1	15.0(1)sy1.x
cisco / ios_xe	3.4sg.3	3.4sg.3.x
cisco / ios	15.1(2)sg4	15.1(2)sg4.x
cisco / ios_xe	3.13s.0	3.13s.0.x
cisco / ios	15.1(2)sg1	15.1(2)sg1.x
cisco / ios	15.0(1)sy7a	15.0(1)sy7a.x
cisco / ios	15.2(1)sy	15.2(1)sy.x
cisco / ios	15.3(3)s5	15.3(3)s5.x
cisco / ios	15.1(2)sy3	15.1(2)sy3.x
cisco / ios_xe	3.12s.3	3.12s.3.x
cisco / ios	15.2(4)s7	15.2(4)s7.x
cisco / ios_xe	3.10s.0a	3.10s.0a.x
cisco / ios_xe	3.3se.2	3.3se.2.x
cisco / ios	15.2(1)e2	15.2(1)e2.x
cisco / ios	15.2(4)s4a	15.2(4)s4a.x
cisco / ios_xe	3.13s.1	3.13s.1.x
cisco / ios	15.2(4)s2	15.2(4)s2.x
cisco / ios_xe	3.6e.2	3.6e.2.x
cisco / ios_xe	3.4sg.1	3.4sg.1.x
cisco / ios	15.4(3)s2	15.4(3)s2.x
cisco / ios	15.0(1)sy2	15.0(1)sy2.x
cisco / ios	12.2(50)sy	12.2(50)sy.x
cisco / ios	15.1(1)sy4	15.1(1)sy4.x
cisco / ios_xe	3.4sg.4	3.4sg.4.x
cisco / ios	15.1(2)sy	15.1(2)sy.x
cisco / ios	15.2(4)s6	15.2(4)s6.x
cisco / ios_xe	3.3se.4	3.3se.4.x
cisco / ios	15.4(1)s	15.4(1)s.x
cisco / ios_xe	3.10s.0	3.10s.0.x
cisco / ios	15.3(3)s3	15.3(3)s3.x
cisco / ios	15.3(2)s0a	15.3(2)s0a.x
cisco / ios	15.3(1)s2	15.3(1)s2.x
cisco / ios_xe	3.6e.1	3.6e.1.x
cisco / ios	15.1(2)sy1	15.1(2)sy1.x
cisco / ios	15.2(2)ea1	15.2(2)ea1.x
cisco / ios	15.0(1)sy	15.0(1)sy.x
cisco / ios	15.4(1)s1	15.4(1)s1.x
cisco / ios_xe	3.12s.0	3.12s.0.x
cisco / ios	15.2(2a)e1	15.2(2a)e1.x
cisco / ios_xe	3.3xo.0	3.3xo.0.x
cisco / ios	15.0(2)se4	15.0(2)se4.x
cisco / ios	15.2(2)e2	15.2(2)e2.x
cisco / ios	15.2(1)e	15.2(1)e.x
cisco / ios	15.0(1)sy6	15.0(1)sy6.x
cisco / ios_xe	3.9s.1	3.9s.1.x
cisco / ios_xe	3.14s.1	3.14s.1.x
cisco / ios_xe	3.12s.1	3.12s.1.x
cisco / ios_xe	3.10s.01	3.10s.01.x
cisco / ios	15.1(2)sg6	15.1(2)sg6.x
cisco / ios	15.2(2)e1	15.2(2)e1.x
cisco / ios_xe	3.9s.0	3.9s.0.x
cisco / ios_xe	3.14s.0	3.14s.0.x
cisco / ios	15.0(2)ea2	15.0(2)ea2.x
cisco / ios	15.0(2)se3	15.0(2)se3.x
cisco / ios_xe	3.10s.2	3.10s.2.x
cisco / ios	12.2(50)sy3	12.2(50)sy3.x
cisco / ios	15.2(2)e	15.2(2)e.x
cisco / ios	15.0(2)ez	15.0(2)ez.x
cisco / ios	15.0(1)ex	15.0(1)ex.x
cisco / ios_xe	3.11s.0	3.11s.0.x
cisco / ios	15.0(2)se	15.0(2)se.x
cisco / ios_xe	3.4sg.2	3.4sg.2.x
cisco / ios	15.1(2)sg3	15.1(2)sg3.x
cisco / ios_xe	3.6e.2a	3.6e.2a.x
cisco / ios_xe	3.4sg.6	3.4sg.6.x
cisco / ios	15.4(1)s2	15.4(1)s2.x
cisco / ios	15.2(3)e	15.2(3)e.x
cisco / ios	15.0(1)sy3	15.0(1)sy3.x
cisco / ios_xe	3.10s.3	3.10s.3.x
cisco / ios_xe	3.6e.0b	3.6e.0b.x
cisco / ios	15.0(1)sy7	15.0(1)sy7.x
cisco / ios_xe	3.11s.1	3.11s.1.x
cisco / ios	15.1(1)sy1	15.1(1)sy1.x
cisco / ios	15.0(2)se2	15.0(2)se2.x
cisco / ios_xe	3.9s.2	3.9s.2.x
cisco / ios	15.0(1)sy4	15.0(1)sy4.x
cisco / ios	15.1(1)sy5	15.1(1)sy5.x
cisco / ios_xe	3.13s.2	3.13s.2.x
cisco / ios	15.5(1)s1	15.5(1)s1.x
cisco / ios	15.0(2)ej	15.0(2)ej.x
cisco / ios	15.4(1)s3	15.4(1)s3.x
cisco / ios	15.2(4)s3	15.2(4)s3.x
cisco / ios	15.1(1)sy	15.1(1)sy.x
cisco / ios	15.1(2)sg5	15.1(2)sg5.x
cisco / ios	15.4(2)s1	15.4(2)s1.x
cisco / ios	15.0(2)ej1	15.0(2)ej1.x
cisco / ios	15.2(3a)e	15.2(3a)e.x
cisco / ios_xe	3.6e.0	3.6e.0.x
cisco / ios_xe	3.2se.2	3.2se.2.x
cisco / ios	15.0(2)se8	15.0(2)se8.x
cisco / ios	15.1(2)sy4a	15.1(2)sy4a.x
cisco / ios_xe	3.4sg.0	3.4sg.0.x
cisco / ios	15.0(2a)ex5	15.0(2a)ex5.x
cisco / ios	15.1(2)sy2	15.1(2)sy2.x
cisco / ios	15.3(3)s4	15.3(3)s4.x
cisco / ios	15.3(2)s2	15.3(2)s2.x
cisco / ios	15.0(2)se1	15.0(2)se1.x
cisco / ios	15.2(1)e3	15.2(1)e3.x
cisco / ios	15.4(2)s	15.4(2)s.x
cisco / ios_xe	3.7e.0	3.7e.0.x
cisco / ios	15.2(4)s4	15.2(4)s4.x
cisco / ios	15.4(3)s	15.4(3)s.x
cisco / ios_xe	3.10s.1	3.10s.1.x
cisco / ios_xe	3.5e.0	3.5e.0.x
cisco / ios_xe	3.3se.0	3.3se.0.x
cisco / ios_xe	3.4sg.5	3.4sg.5.x
cisco / ios	15.0(2)se7	15.0(2)se7.x
cisco / ios_xe	3.3se.3	3.3se.3.x
cisco / ios	15.2(3)e1	15.2(3)e1.x
cisco / ios	15.0(2)se6	15.0(2)se6.x
cisco / ios	12.2(50)sy2	12.2(50)sy2.x
cisco / ios	15.3(1)s	15.3(1)s.x
cisco / ios_xe	3.6e.0a	3.6e.0a.x
cisco / ios	15.5(1)s	15.5(1)s.x
cisco / ios	15.1(2)sg	15.1(2)sg.x
cisco / ios	15.2(4)s1	15.2(4)s1.x
cisco / ios	15.1(2)sy4	15.1(2)sy4.x
cisco / ios_xe	3.5e.1	3.5e.1.x
cisco / ios_xe	3.3se.1	3.3se.1.x
cisco / ios_xe	3.2se.3	3.2se.3.x
cisco / ios	15.3(3)s1	15.3(3)s1.x
cisco / ios_xe	3.2se.0	3.2se.0.x
cisco / ios_xe	3.11s.3	3.11s.3.x
cisco / ios	15.1(2)sy5	15.1(2)sy5.x
cisco / ios	15.0(1)sy5	15.0(1)sy5.x
cisco / ios	15.3(3)s	15.3(3)s.x
cisco / ios	15.2(1)e1	15.2(1)e1.x
cisco / ios_xe	3.12s.2	3.12s.2.x
cisco / ios_xe	3.3xo.1	3.3xo.1.x
cisco / ios	15.1(1)sy3	15.1(1)sy3.x
cisco / ios	15.4(3)s1	15.4(3)s1.x
cisco / ios	15.0(2)se5	15.0(2)se5.x
cisco / ios_xe	3.10s.4	3.10s.4.x
cisco / ios_xe	3.5e.3	3.5e.3.x
cisco / ios	15.4(2)s3	15.4(2)s3.x
cisco / ios	15.3(3)s2	15.3(3)s2.x
cisco / ios	15.2(4)s3a	15.2(4)s3a.x
cisco / ios	15.0(1)sy8	15.0(1)sy8.x
cisco / ios_xe	3.10s.5	3.10s.5.x
cisco / ios_xe	3.7e.1	3.7e.1.x
cisco / ios	15.1(2)sg2	15.1(2)sg2.x
cisco / ios	15.2(1)sy0a	15.2(1)sy0a.x
cisco / ios	15.1(1)sy2	15.1(1)sy2.x
cisco / ios_xe	3.3se.5	3.3se.5.x
cisco / ios	15.2(4)s5	15.2(4)s5.x
cisco / ios	15.2(4)s	15.2(4)s.x

Vulnerability Database

289,784

CVE-2015-6278