CVE-2015-0608

medium

Description

Race condition in the Measurement, Aggregation, and Correlation Engine (MACE) implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSCul48736.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/100808

http://www.securitytracker.com/id/1031731

http://www.securityfocus.com/bid/72566

http://tools.cisco.com/security/center/viewAlert.x?alertId=37421

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0608

Details

Source: Mitre, NVD

Published: 2015-02-12

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 5.9

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00616