Lucene search

K

[email protected]NVD:CVE-2014-3330

HistoryAug 11, 2014 - 10:55 p.m.

CVE-2014-3330

2014-08-1122:55:04

CWE-264

[email protected]

web.nvd.nist.gov

2

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.004

Percentile

73.2%

Cisco NX-OS 6.1(2)I2(1) on Nexus 9000 switches does not properly process packet-drop policy checks for logged packets, which allows remote attackers to bypass intended access restrictions via a flood of packets matching a policy that contains the log keyword, aka Bug ID CSCuo02489.

Affected configurations

NVD

Node

cisconx-osMatch6.1\(2\)i2\(1\)

AND

cisconexus_9000Match-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3330

tools.cisco.com/security/center/viewAlert.x?alertId=35181

www.securityfocus.com/bid/69057

www.securitytracker.com/id/1030676

exchange.xforce.ibmcloud.com/vulnerabilities/95122

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.004

Percentile

73.2%

Related for NVD:CVE-2014-3330

cvelist1 cve1 openvas1 cisco1 nessus1 prion1