4.8

CVE-2014-3290

The mDNS implementation in Cisco IOS XE 3.12S does not properly interact with autonomic networking, which allows remote attackers to obtain sensitive networking-services information by sniffing the network or overwrite networking-services data via a crafted mDNS response, aka Bug ID CSCun64867.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Xe Version3.12s
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.15% 0.626
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.8 6.5 4.9
AV:A/AC:L/Au:N/C:P/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/58715
Third Party Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3290
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=34613
Vendor Advisory
http://www.securityfocus.com/bid/68021
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1030444
Third Party Advisory
VDB Entry