The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 allows remote attackers to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745.
cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:* versions from 12.2 to 12.4 (inclusive)
cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:* versions from 15.0 to 15.2 (inclusive)