Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2014-7997
HistoryNov 15, 2014 - 2:59 a.m.

CVE-2014-7997

2014-11-1502:59:01
CWE-399
[email protected]
web.nvd.nist.gov
16
cisco
ios
dhcp
vulnerability
denial of service
cve-2014-7997
nvd
bug id csctn16281

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

75.2%

JSON

The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.

Affected configurations

NVD
Node
ciscoiosMatch-
AND
ciscoaironet_1040Match-
OR
ciscoaironet_1140Match-
OR
ciscoaironet_1260Match-
OR
ciscoaironet_3500Match-
OR
ciscoaironet_3600Match-
OR
ciscoaironet_3600eMatch-
OR
ciscoaironet_3600iMatch-
OR
ciscoaironet_3600pMatch-
OR
ciscoaironet_600_office_extendMatch-
OR
ciscoaironet_ap1100
OR
ciscoaironet_ap1130ag
OR
ciscoaironet_ap1131
OR
ciscoaironet_ap1200
OR
ciscoaironet_ap1230ag
OR
ciscoaironet_ap1240
OR
ciscoaironet_ap1240ag
OR
ciscoaironet_ap1300
OR
ciscoaironet_ap1400
OR
ciscoaironet_ap340
OR
ciscoaironet_ap340Match11.21
OR
ciscoaironet_ap350
OR
ciscoaironet_ap350Match11.21
CPENameOperatorVersion
cisco:ioscisco ioseq-

Related

nvd 1
cisco 1
cvelist 1
prion 1
nvd
nvd
CVE-2014-7997
2014-11-15 02:59:01
cisco
cisco
Cisco Aironet DHCP Denial of Service Vulnerability
2014-11-17 19:22:40
cvelist
cvelist
CVE-2014-7997
2014-11-15 02:00:00
prion
prion
Input validation
2014-11-15 02:59:00

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

75.2%

JSON
Related for CVE-2014-7997
nvd1cisco1cvelist1prion1