CVE-2014-2113

EPSS 1.1%
Veröffentlicht 27.03.2014 21:55:09
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle psirt@cisco.com
CVE-Watchlists
Login
Unerledigt
Login

Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow remote attackers to cause a denial of service (I/O memory consumption and device reload) via a malformed IPv6 packet, aka Bug ID CSCui59540.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Ios Version15.1

Cisco ≫ Ios Version15.2

Cisco ≫ Ios Version15.3

Cisco ≫ Ios Xe Version3.3.0s

Cisco ≫ Ios Xe Version3.3.0sg

Cisco ≫ Ios Xe Version3.3.1s

Cisco ≫ Ios Xe Version3.3.1sg

Cisco ≫ Ios Xe Version3.3.2s

Cisco ≫ Ios Xe Version3.3.3s

Cisco ≫ Ios Xe Version3.5.0s

Cisco ≫ Ios Xe Version3.5.1s

Cisco ≫ Ios Xe Version3.5.xs

Cisco ≫ Ios Xe Version3.7.0s

Cisco ≫ Ios Xe Version3.7.1s

Cisco ≫ Ios Xe Version3.7.2s

Cisco ≫ Ios Xe Version3.8.0s

Cisco ≫ Ios Xe Version3.9.0s

Cisco ≫ Ios Xe Version3.9.1s

Cisco ≫ Ios Xe Version3.10

Cisco ≫ Ios Xe Version3.10.0s

Cisco ≫ Ios Xe Version3.10.1s

Cisco ≫ Ios Xe Version3.10.1s1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.1%	0.761

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140326-ipv6

Vendor Advisory

http://www.securityfocus.com/bid/66467

https://nvd.nist.gov/vuln/detail/CVE-2014-2113

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-2113

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-2113

EUVD