ID
VAR-201412-0300
CVE
CVE-2014-8014
TITLE
Cisco IOS XR Service disruption in (DoS) Vulnerabilities
Trust: 0.8
DESCRIPTION
Cisco IOS XR allows remote attackers to cause a denial of service (RSVP process reload) via a malformed RSVP packet, aka Bug ID CSCub63710. Vendors have confirmed this vulnerability Bug ID CSCub63710 It is released as. Supplementary information : CWE Vulnerability type by CWE-19: Data Handling ( Data processing ) Has been identified. http://cwe.mitre.org/data/definitions/19.htmlService disruption by a third party (RSVP Reload process ) There is a possibility of being put into a state. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xr | scope: | - | version: | - | Trust: 1.2 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | * | Trust: 1.0 |
| vendor: | cisco | model: | ios xr | scope: | lte | version: | 4.3.2 | Trust: 0.8 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-19 | Trust: 1.1 |
| problemtype: | CWE-Other | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
Failure to Handle Exceptional Conditions
Trust: 0.3
CONFIGURATIONS
PATCH
| title: | Cisco IOS XR Software Malformed RSVP Packet Denial of Service Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-8014 | Trust: 0.8 |
| title: | 36793 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=36793 | Trust: 0.8 |
| title: | Patch for Cisco IOS XR Software Denial of Service Vulnerability (CNVD-2014-09033) | url: | https://www.cnvd.org.cn/patchInfo/show/52965 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2014-8014 | Trust: 3.4 |
| db: | SECTRACK | id: | 1031396 | Trust: 1.1 |
| db: | BID | id: | 71724 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2014-007303 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201412-416 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2014-09033 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-75959 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2014-8014 | Trust: 1.7 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-8014 | Trust: 1.4 |
| url: | http://www.securitytracker.com/id/1031396 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-8014 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
| url: | http://www.cisco.com/en/us/products/ps5845/index.html | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2014-09033 |
| db: | VULHUB | id: | VHN-75959 |
| db: | BID | id: | 71724 |
| db: | JVNDB | id: | JVNDB-2014-007303 |
| db: | CNNVD | id: | CNNVD-201412-416 |
| db: | NVD | id: | CVE-2014-8014 |
LAST UPDATE DATE
2024-11-23T22:18:28.061000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2014-09033 | date: | 2014-12-19T00:00:00 |
| db: | VULHUB | id: | VHN-75959 | date: | 2017-01-03T00:00:00 |
| db: | BID | id: | 71724 | date: | 2014-12-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-007303 | date: | 2014-12-22T00:00:00 |
| db: | CNNVD | id: | CNNVD-201412-416 | date: | 2014-12-19T00:00:00 |
| db: | NVD | id: | CVE-2014-8014 | date: | 2024-11-21T02:18:25.797 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2014-09033 | date: | 2014-12-19T00:00:00 |
| db: | VULHUB | id: | VHN-75959 | date: | 2014-12-18T00:00:00 |
| db: | BID | id: | 71724 | date: | 2014-12-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-007303 | date: | 2014-12-22T00:00:00 |
| db: | CNNVD | id: | CNNVD-201412-416 | date: | 2014-12-19T00:00:00 |
| db: | NVD | id: | CVE-2014-8014 | date: | 2014-12-18T16:59:16.817 |