HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2012-4643

CVSS 7.1v2.0pub. 2012-10-29upd. 2026-04-29

The DHCP server on Cisco Adaptive Security Appliances (ASA) 5500 series devices, and the ASA Services Module (ASASM) in Cisco Catalyst 6500 series devices, with software 7.0 before 7.2(5.8), 7.1 before 7.2(5.8), 7.2 before 7.2(5.8), 8.0 before 8.0(5.28), 8.1 before 8.1(2.56), 8.2 before 8.2(5.27), 8.3 before 8.3(2.31), 8.4 before 8.4(3.10), 8.5 before 8.5(1.9), and 8.6 before 8.6(1.5) does not properly allocate memory for DHCP packets, which allows remote attackers to cause a denial of service (device reload) via a series of crafted IPv4 packets, aka Bug ID CSCtw84068.

CVSS Vector
AV:N/AC:M/Au:N/C:N/I:N/A:C
  • Cisco 5500 Series Adaptive Security Appliance

    HW
    Cisco
    wszystkie wersje
  • Cisco Adaptive Security Appliance Software

    OS
    Cisco
    7.07.0\(0\)7.0\(1\)7.0\(2\)7.0\(4\)7.0\(5\)7.0\(5.2\)7.17.1\(2\)7.1\(2.27\)7.1\(2.48\)7.1\(2.49\)7.1\(2.5\)7.1\(5\)7.2+ 44 więcej
  • Cisco Catalyst 6500

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6503 E

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6504 E

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6506 E

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6509 E

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6509 Neb A

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6509 V E

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6513

    HW
    Cisco
    wszystkie wersje
  • Cisco Catalyst 6513 E

    HW
    Cisco
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2025-20333CRITICAL9.9⚠ KEVPL ✓ten sam produkt

RCE jako root w Cisco ASA i FTD poprzez podatny serwer VPN web

CVE-2025-20363CRITICAL9.0PL ✓ten sam produkt

RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP

CVE-2024-20329CRITICAL9.9PL ✓ten sam produkt

RCE w podsystemie SSH Cisco ASA — wykonanie poleceń jako root

CVE-2020-3125CRITICAL9.8ten sam produkt

A vulnerability in the Kerberos authentication feature of Cisco Adaptive Security Appliance (ASA) Software cou...

CVE-2020-3187CRITICAL9.1ten sam produkt

A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Fi...