Lucene search

[email protected]NVD:CVE-2014-3378

HistorySep 20, 2014 - 10:55 a.m.

CVE-2014-3378

2014-09-2010:55:04

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.023

Percentile

89.7%

JSON

tacacsd in Cisco IOS XR 5.1 and earlier allows remote attackers to cause a denial of service (process reload) via a malformed TACACS+ packet, aka Bug ID CSCum00468.

Affected configurations

Nvd

Node

ciscoios_xrMatch2.0

ciscoios_xrMatch3.0

ciscoios_xrMatch3.0.1

ciscoios_xrMatch3.1

ciscoios_xrMatch3.1.0

ciscoios_xrMatch3.2

ciscoios_xrMatch3.2.1

ciscoios_xrMatch3.2.2

ciscoios_xrMatch3.2.4

ciscoios_xrMatch3.2.50

ciscoios_xrMatch3.3

ciscoios_xrMatch3.3.1

ciscoios_xrMatch3.3.2

ciscoios_xrMatch3.3.3

ciscoios_xrMatch3.3.4

ciscoios_xrMatch3.3.5

ciscoios_xrMatch3.4

ciscoios_xrMatch3.4.1

ciscoios_xrMatch3.4.2

ciscoios_xrMatch3.4.3

ciscoios_xrMatch3.5

ciscoios_xrMatch3.5.1

ciscoios_xrMatch3.5.2

ciscoios_xrMatch3.5.3

ciscoios_xrMatch3.5.4

ciscoios_xrMatch3.6

ciscoios_xrMatch3.6.1

ciscoios_xrMatch3.6.2

ciscoios_xrMatch3.6.3

ciscoios_xrMatch3.7

ciscoios_xrMatch3.7.1

ciscoios_xrMatch3.7.2

ciscoios_xrMatch3.7.3

ciscoios_xrMatch3.8.0

ciscoios_xrMatch3.8.1

ciscoios_xrMatch3.8.2

ciscoios_xrMatch3.8.3

ciscoios_xrMatch3.8.4

ciscoios_xrMatch3.9.0

ciscoios_xrMatch3.9.1

ciscoios_xrMatch3.9.2

ciscoios_xrMatch4.0.0

ciscoios_xrMatch4.0.1

ciscoios_xrMatch4.0.2

ciscoios_xrMatch4.0.3

ciscoios_xrMatch4.0.4

ciscoios_xrMatch4.1

ciscoios_xrMatch4.1.1

ciscoios_xrMatch4.1.2

ciscoios_xrMatch4.2.0

ciscoios_xrMatch4.3.0

ciscoios_xrMatch4.3.1

ciscoios_xrMatch4.3.2

ciscoios_xrMatch4.3.4

ciscoios_xrMatch5.1.0

VendorProductVersionCPE
ciscoios_xr2.0cpe:2.3:o:cisco:ios_xr:2.0:*:*:*:*:*:*:*
ciscoios_xr3.0cpe:2.3:o:cisco:ios_xr:3.0:*:*:*:*:*:*:*
ciscoios_xr3.0.1cpe:2.3:o:cisco:ios_xr:3.0.1:*:*:*:*:*:*:*
ciscoios_xr3.1cpe:2.3:o:cisco:ios_xr:3.1:*:*:*:*:*:*:*
ciscoios_xr3.1.0cpe:2.3:o:cisco:ios_xr:3.1.0:*:*:*:*:*:*:*
ciscoios_xr3.2cpe:2.3:o:cisco:ios_xr:3.2:*:*:*:*:*:*:*
ciscoios_xr3.2.1cpe:2.3:o:cisco:ios_xr:3.2.1:*:*:*:*:*:*:*
ciscoios_xr3.2.2cpe:2.3:o:cisco:ios_xr:3.2.2:*:*:*:*:*:*:*
ciscoios_xr3.2.4cpe:2.3:o:cisco:ios_xr:3.2.4:*:*:*:*:*:*:*
ciscoios_xr3.2.50cpe:2.3:o:cisco:ios_xr:3.2.50:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xr	2.0	cpe:2.3:o:cisco:ios_xr:2.0:::::::*
cisco	ios_xr	3.0	cpe:2.3:o:cisco:ios_xr:3.0:::::::*
cisco	ios_xr	3.0.1	cpe:2.3:o:cisco:ios_xr:3.0.1:::::::*
cisco	ios_xr	3.1	cpe:2.3:o:cisco:ios_xr:3.1:::::::*
cisco	ios_xr	3.1.0	cpe:2.3:o:cisco:ios_xr:3.1.0:::::::*
cisco	ios_xr	3.2	cpe:2.3:o:cisco:ios_xr:3.2:::::::*
cisco	ios_xr	3.2.1	cpe:2.3:o:cisco:ios_xr:3.2.1:::::::*
cisco	ios_xr	3.2.2	cpe:2.3:o:cisco:ios_xr:3.2.2:::::::*
cisco	ios_xr	3.2.4	cpe:2.3:o:cisco:ios_xr:3.2.4:::::::*
cisco	ios_xr	3.2.50	cpe:2.3:o:cisco:ios_xr:3.2.50:::::::*

Rows per page:

1-10 of 551

References

secunia.com/advisories/59632

secunia.com/advisories/59649

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3378

tools.cisco.com/security/center/viewAlert.x?alertId=35775

www.securityfocus.com/bid/69957

www.securitytracker.com/id/1030878

exchange.xforce.ibmcloud.com/vulnerabilities/96067

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.023

Percentile

89.7%

JSON

Related for NVD:CVE-2014-3378

cisco1 cve1 cvelist1 prion1