Lucene search

[email protected]CVE-2014-2183

HistoryApr 29, 2014 - 10:37 a.m.

CVE-2014-2183

2014-04-2910:37:04

CWE-20

[email protected]

web.nvd.nist.gov

cisco

ios xe

l2tp

asr 1000

denial of service

cve-2014-2183

bug id cscun09973

nvd

6.4 Medium

AI Score

Confidence

Low

6.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

44.6%

JSON

The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.

Affected configurations

NVD

Node

ciscoios_xeRange≤3.10.2s

ciscoios_xeMatch3.10

ciscoios_xeMatch3.10.0s

ciscoios_xeMatch3.10.1s

ciscoios_xeMatch3.10.1s1

AND

ciscoasr_1001Match-

ciscoasr_1002Match-

ciscoasr_1002-xMatch-

ciscoasr_1002_fixed_routerMatch-

ciscoasr_1004Match-

ciscoasr_1006Match-

ciscoasr_1013Match-

ciscoasr_1023_routerMatch-

CPENameOperatorVersion
cisco:ios_xecisco ios xele3.10.2s
cisco:ios_xecisco ios xeeq3.10
cisco:ios_xecisco ios xeeq3.10.0s
cisco:ios_xecisco ios xeeq3.10.1s
cisco:ios_xecisco ios xeeq3.10.1s1
cisco:asr_1001cisco asr 1001eq-
cisco:asr_1002cisco asr 1002eq-
cisco:asr_1002-xcisco asr 1002-xeq-
cisco:asr_1002_fixed_routercisco asr 1002 fixed routereq-
cisco:asr_1004cisco asr 1004eq-

CPE	Name	Operator	Version
cisco:ios_xe	cisco ios xe	le	3.10.2s
cisco:ios_xe	cisco ios xe	eq	3.10
cisco:ios_xe	cisco ios xe	eq	3.10.0s
cisco:ios_xe	cisco ios xe	eq	3.10.1s
cisco:ios_xe	cisco ios xe	eq	3.10.1s1
cisco:asr_1001	cisco asr 1001	eq	-
cisco:asr_1002	cisco asr 1002	eq	-
cisco:asr_1002-x	cisco asr 1002-x	eq	-
cisco:asr_1002_fixed_router	cisco asr 1002 fixed router	eq	-
cisco:asr_1004	cisco asr 1004	eq	-