The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.
2015-07-30T14:59:00.087
2025-04-12T10:46:40.837
Deferred
CVSSv2: 5.0 (MEDIUM)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | cisco | ios_xe | 2.1.0 | Yes |
| Operating System | cisco | ios_xe | 2.1.1 | Yes |
| Operating System | cisco | ios_xe | 2.1.2 | Yes |
| Operating System | cisco | ios_xe | 2.2.1 | Yes |
| Operating System | cisco | ios_xe | 2.2.2 | Yes |
| Operating System | cisco | ios_xe | 2.2.3 | Yes |
| Operating System | cisco | ios_xe | 2.3.0 | Yes |
| Operating System | cisco | ios_xe | 2.3.0t | Yes |
| Operating System | cisco | ios_xe | 2.3.1t | Yes |
| Operating System | cisco | ios_xe | 2.3.2 | Yes |
| Operating System | cisco | ios_xe | 2.4.0 | Yes |
| Operating System | cisco | ios_xe | 2.4.1 | Yes |
| Operating System | cisco | ios_xe | 2.5.0 | Yes |
| Operating System | cisco | ios_xe | 2.5.1 | Yes |
| Operating System | cisco | ios_xe | 2.5.2 | Yes |
| Operating System | cisco | ios_xe | 2.6.0 | Yes |
| Operating System | cisco | ios_xe | 2.6.1 | Yes |
| Operating System | cisco | ios_xe | 2.6.2 | Yes |
| Operating System | cisco | ios_xe | 3.10s.0 | Yes |
| Operating System | cisco | ios_xe | 3.10s.0a | Yes |
| Operating System | cisco | ios_xe | 3.10s.1 | Yes |
| Operating System | cisco | ios_xe | 3.10s.2 | Yes |
| Operating System | cisco | ios_xe | 3.10s.3 | Yes |
| Operating System | cisco | ios_xe | 3.11s.0 | Yes |
| Operating System | cisco | ios_xe | 3.11s.1 | Yes |
| Operating System | cisco | ios_xe | 3.11s.2 | Yes |
| Operating System | cisco | ios_xe | 3.12s.0 | Yes |
| Operating System | cisco | ios_xe | 3.12s.1 | Yes |
| Operating System | cisco | ios_xe | 3.13s.0 | Yes |