Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2010-0578


The IKE implementation in Cisco IOS 12.2 through 12.4 on Cisco 7200 and 7301 routers with VAM2+ allows remote attackers to cause a denial of service (device reload) via a malformed IKE packet, aka Bug ID CSCtb13491.


Security Impact Summary

CVE-2010-0578 is a security vulnerability that . Impacting 4 products from cisco, from cisco, from cisco and 1 other, organizations running these solutions should prioritize assessment and patching.

Historical Context

Documented in 2010, this vulnerability occurred amid the cloud computing expansion era, where traditional network perimeter security models were being reevaluated. Organizations were transitioning from isolated infrastructure to interconnected systems, creating new attack surfaces that vulnerabilities like this could exploit.


Published

2010-03-25T21:00:00.733

Last Modified

2026-06-16T23:16:26.473

Status

Modified

Source

[email protected]

Severity

CVSSv2: 7.8 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

6.9

Weaknesses
  • Type: Primary
    CWE-310

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System cisco ios 12.2sb Yes
Operating System cisco ios 12.2sca Yes
Operating System cisco ios 12.2scb Yes
Operating System cisco ios 12.2scc Yes
Operating System cisco ios 12.2sra Yes
Operating System cisco ios 12.3t Yes
Operating System cisco ios 12.3xe Yes
Operating System cisco ios 12.3xj Yes
Operating System cisco ios 12.3xr Yes
Operating System cisco ios 12.3xu Yes
Operating System cisco ios 12.3xw Yes
Operating System cisco ios 12.3xx Yes
Operating System cisco ios 12.3yf Yes
Operating System cisco ios 12.3yg Yes
Operating System cisco ios 12.3yk Yes
Operating System cisco ios 12.3yq Yes
Operating System cisco ios 12.3ys Yes
Operating System cisco ios 12.3yu Yes
Operating System cisco ios 12.3yx Yes
Operating System cisco ios 12.3za Yes
Operating System cisco ios 12.4 Yes
Operating System cisco ios 12.4gc Yes
Operating System cisco ios 12.4ja Yes
Operating System cisco ios 12.4jda Yes
Operating System cisco ios 12.4jdc Yes
Operating System cisco ios 12.4jdd Yes
Operating System cisco ios 12.4jk Yes
Operating System cisco ios 12.4jl Yes
Operating System cisco ios 12.4jma Yes
Operating System cisco ios 12.4jmb Yes
Operating System cisco ios 12.4jx Yes
Operating System cisco ios 12.4md Yes
Operating System cisco ios 12.4mda Yes
Operating System cisco ios 12.4mr Yes
Operating System cisco ios 12.4sw Yes
Operating System cisco ios 12.4t Yes
Operating System cisco ios 12.4xa Yes
Operating System cisco ios 12.4xb Yes
Operating System cisco ios 12.4xc Yes
Operating System cisco ios 12.4xd Yes
Operating System cisco ios 12.4xe Yes
Operating System cisco ios 12.4xf Yes
Operating System cisco ios 12.4xg Yes
Operating System cisco ios 12.4xj Yes
Operating System cisco ios 12.4xk Yes
Operating System cisco ios 12.4xl Yes
Operating System cisco ios 12.4xm Yes
Operating System cisco ios 12.4xn Yes
Operating System cisco ios 12.4xp Yes
Operating System cisco ios 12.4xq Yes
Operating System cisco ios 12.4xr Yes
Operating System cisco ios 12.4xt Yes
Operating System cisco ios 12.4xv Yes
Operating System cisco ios 12.4xw Yes
Operating System cisco ios 12.4xy Yes
Operating System cisco ios 12.4xz Yes
Operating System cisco ios 12.4ya Yes
Operating System cisco ios 12.4yb Yes
Operating System cisco ios 12.4yd Yes
Operating System cisco ios 12.4ye Yes
Operating System cisco ios 12.4yg Yes
Hardware cisco 7200_router * No
Hardware cisco 7301_router * No
Hardware cisco router_7200 * No

References

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For cisco's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.