cvedb.io
CVE-2015-4291
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-08-01T01:59:16.007 · Last modified 2026-06-17T00:27:03.327

Summary

Cisco IOS XE 2.x before 2.4.3 and 2.5.x before 2.5.1 on ASR 1000 devices allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted series of fragmented (1) IPv4 or (2) IPv6 packets, aka Bug ID CSCtd72617.

Affected products

cisco — ios_xe

Does this affect you?

Add your gear to cvedb and we'll alert you only when cisco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.