Vulnerability Details : CVE-2012-1327
dot11t/t_if_dot11_hal_ath.c in Cisco IOS 12.3, 12.4, 15.0, and 15.1 allows remote attackers to cause a denial of service (assertion failure and reboot) via 802.11 wireless traffic, as demonstrated by a video call from Apple iOS 5.0 on an iPhone 4S, aka Bug ID CSCtt94391.
Vulnerability category: BypassGain privilegeDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2012-1327
Probability of exploitation activity in the next 30 days: 0.14%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 49 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2012-1327
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.1
|
MEDIUM | AV:A/AC:L/Au:N/C:N/I:N/A:C |
6.5
|
6.9
|
NIST |
CWE ids for CVE-2012-1327
-
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-1327
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/75413
Cisco IOS wireless traffic denial of service CVE-2012-1327 Vulnerability Report
-
http://www.cisco.com/en/US/docs/ios/15_1/release/notes/151-2TCAVS.html
Cross-Platform Release Notes for Cisco IOS Release 15.1M&T - Release 15.1(2)T Caveats [Cisco IOS 15.1M&T] - CiscoRelease Notes;Vendor Advisory
Products affected by CVE-2012-1327
- cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.1:*:*:*:*:*:*:*