CVE-2002-2239 : The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series run

The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed packet.

Published 2002-12-31 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2002-2239

Cisco » IOS » Version: 12.1e
cpe:2.3:o:cisco:ios:12.1e:*:*:*:*:*:*:*
Matching versions
When used together with: Cisco » Catalyst 6500
When used together with: Cisco » Catalyst 7600

Exploit prediction scoring system (EPSS) score for CVE-2002-2239

EPSS FAQ

0.54%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 65 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2002-2239

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

CWE ids for CVE-2002-2239

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2002-2239

http://www.securityfocus.com/bid/6358
http://www.cisco.com/warp/public/707/osm-lc-ios-pkt-vuln-pub.shtml

AI Infrastructure, Secure Networking, and Software Solutions - Cisco
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/10823

Jump to

Vulnerability Details : CVE-2002-2239

Products affected by CVE-2002-2239

Exploit prediction scoring system (EPSS) score for CVE-2002-2239

CVSS scores for CVE-2002-2239

CWE ids for CVE-2002-2239

References for CVE-2002-2239