Lucene search

[email protected]NVD:CVE-2014-2183

HistoryApr 29, 2014 - 10:37 a.m.

CVE-2014-2183

2014-04-2910:37:04

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

6.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

44.8%

JSON

The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.

Affected configurations

Nvd

Node

ciscoios_xeRange≤3.10.2s

ciscoios_xeMatch3.10

ciscoios_xeMatch3.10.0s

ciscoios_xeMatch3.10.1s

ciscoios_xeMatch3.10.1s1

AND

ciscoasr_1001Match-

ciscoasr_1002Match-

ciscoasr_1002-xMatch-

ciscoasr_1002_fixed_routerMatch-

ciscoasr_1004Match-

ciscoasr_1006Match-

ciscoasr_1013Match-

ciscoasr_1023_routerMatch-

VendorProductVersionCPE
ciscoios_xe*cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*
ciscoios_xe3.10cpe:2.3:o:cisco:ios_xe:3.10:*:*:*:*:*:*:*
ciscoios_xe3.10.0scpe:2.3:o:cisco:ios_xe:3.10.0s:*:*:*:*:*:*:*
ciscoios_xe3.10.1scpe:2.3:o:cisco:ios_xe:3.10.1s:*:*:*:*:*:*:*
ciscoios_xe3.10.1s1cpe:2.3:o:cisco:ios_xe:3.10.1s1:*:*:*:*:*:*:*
ciscoasr_1001-cpe:2.3:h:cisco:asr_1001:-:*:*:*:*:*:*:*
ciscoasr_1002-cpe:2.3:h:cisco:asr_1002:-:*:*:*:*:*:*:*
ciscoasr_1002-x-cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:*
ciscoasr_1002_fixed_router-cpe:2.3:h:cisco:asr_1002_fixed_router:-:*:*:*:*:*:*:*
ciscoasr_1004-cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	*	cpe:2.3:o:cisco:ios_xe::::::::
cisco	ios_xe	3.10	cpe:2.3:o:cisco:ios_xe:3.10:::::::*
cisco	ios_xe	3.10.0s	cpe:2.3:o:cisco:ios_xe:3.10.0s:::::::*
cisco	ios_xe	3.10.1s	cpe:2.3:o:cisco:ios_xe:3.10.1s:::::::*
cisco	ios_xe	3.10.1s1	cpe:2.3:o:cisco:ios_xe:3.10.1s1:::::::*
cisco	asr_1001	-	cpe:2.3:h:cisco:asr_1001:-:::::::*
cisco	asr_1002	-	cpe:2.3:h:cisco:asr_1002:-:::::::*
cisco	asr_1002-x	-	cpe:2.3:h:cisco:asr_1002-x:-:::::::*
cisco	asr_1002_fixed_router	-	cpe:2.3:h:cisco:asr_1002_fixed_router:-:::::::*
cisco	asr_1004	-	cpe:2.3:h:cisco:asr_1004:-:::::::*

Rows per page:

1-10 of 131

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-2183

tools.cisco.com/security/center/viewAlert.x?alertId=33971

CVSS2

6.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:N/I:N/A:C

AI Score

6.2

Confidence

High

EPSS

0.001

Percentile

44.8%

JSON

Related for NVD:CVE-2014-2183

cve1 prion1 cvelist1 cisco1