CVE-2013-1144 : Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote attacker

Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote attackers to cause a denial of service (memory consumption) via unspecified (1) IPv4 or (2) IPv6 IKE packets, aka Bug ID CSCth81055.

Published 2013-03-28 23:55:02

Updated 2025-04-11 00:51:22

Source Cisco Systems, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2013-1144

Cisco » IOS » Version: 15.1
cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2013-1144

EPSS FAQ

0.43%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 59 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2013-1144

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete

CWE ids for CVE-2013-1144

CWE-399

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-1144

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-ike

Cisco IOS Software Internet Key Exchange Vulnerability
Vendor Advisory

Jump to

Vulnerability Details : CVE-2013-1144

Products affected by CVE-2013-1144

Exploit prediction scoring system (EPSS) score for CVE-2013-1144

CVSS scores for CVE-2013-1144

CWE ids for CVE-2013-1144

References for CVE-2013-1144