Race condition vulnerability in Cisco IPS SSL implementation during key-regeneration phase of upgrade (Bug ID CSCui25688)

Race condition vulnerability in Cisco IPS SSL implementation during key-regeneration phase of upgrade (Bug ID CSCui25688)

CVE-2015-0631 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

Race condition in the SSL implementation on Cisco Intrusion Prevention System (IPS) devices allows remote attackers to cause a denial of service by making many management-interface HTTPS connections during the key-regeneration phase of an upgrade, aka Bug ID CSCui25688.

Learn more about our Cis Benchmark Audit For Cisco.