Vulnerability Details : CVE-2010-2824
Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2010-2824
Probability of exploitation activity in the next 30 days: 0.13%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 46 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2010-2824
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2010-2824
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml
Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine - CiscoVendor Advisory
Products affected by CVE-2010-2824
- cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600
- cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*When used together with: Cisco » Catalyst 6500When used together with: Cisco » Catalyst 7600