- Description
- Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) 3.0.x before 3.0.7 and 3.1.x before 3.1.0, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (management interface outage) via SSH traffic that occurs during management operations and triggers "illegal I/O operations," aka Bug ID CSCsh49563.
- Source
- psirt@cisco.com
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
- nvd@nist.gov
- CWE-287
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:service_control_engine:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AA9282CB-43A7-44C4-A678-D5C67D3CF310",
"versionEndIncluding": "3.1.6"
},
{
"criteria": "cpe:2.3:a:cisco:service_control_engine:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "47EE0074-7A1C-44C3-AB50-DB1E7D06FF0B"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:icon-labs:iconfidant_ssh:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1863D250-A98A-48FB-AFD1-8A73FC6F18CF",
"versionEndIncluding": "2.3.7"
}
],
"operator": "OR"
}
]
}
]