CVE-2008-3818
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
16/01/2009
Last modified:
09/04/2025
Description
Cisco ONS 15310-CL, 15310-MA, 15327, 15454, 15454 SDH, and 15600 with software 7.0.2 through 7.0.6, 7.2.2, 8.0.x, 8.5.1, and 8.5.2 allows remote attackers to cause a denial of service (control-card reset) via a crafted TCP session.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:cisco:ons:7.0.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:7.0.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:7.0.5:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:7.2.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:7.2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:8.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:8.5.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:8.5.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:ons:8.5.2:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15310-cl:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15310-ma:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15327:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15454:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15454sdh:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://securitytracker.com/id?1021592=
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a5c4fa.shtml
- http://www.securityfocus.com/bid/33261
- http://www.vupen.com/english/advisories/2009/0139
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47940
- http://securitytracker.com/id?1021592=
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080a5c4fa.shtml
- http://www.securityfocus.com/bid/33261
- http://www.vupen.com/english/advisories/2009/0139
- https://exchange.xforce.ibmcloud.com/vulnerabilities/47940