CVE-2015-6282

Name of the Vulnerable Software and Affected Versions Cisco IOS XE versions 2.x through 3.10.5S Cisco IOS XE versions 3.11.xS through 3.13.2S Cisco IOS XE versions 3.14.xS through 3.15.0S

Description A vulnerability in the processing of IPv4 packets that require Network Address Translation (NAT) and Multiprotocol Label Switching (MPLS) services could allow an unauthenticated, remote attacker to cause a reload of the affected device. The issue is due to improper processing of IPv4 packets that require NAT and MPLS processing. An attacker could exploit this by sending an IPv4 packet to be processed by a Cisco IOS XE device configured to perform NAT and MPLS services.

Recommendations For Cisco IOS XE versions 2.x through 3.10.5S, update to version 3.10.6S or later. For Cisco IOS XE versions 3.11.xS through 3.13.2S, update to version 3.13.3S or later. For Cisco IOS XE versions 3.14.xS through 3.15.0S, update to version 3.15.1S or later.