Published: 12/09/2014 Updated: 29/08/2017

CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8

VMScore: 356

Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

A vulnerability in the command-line interface (CLI) of Cisco IOS XR Software could allow an authenticated, remote malicious user to access sensitive information. The vulnerability is due to insufficient data protection of sensitive information. An attacker could exploit this vulnerability by issuing specific system commands on the affected device. Cisco has confirmed the vulnerability in a security notice and released software updates. To exploit this vulnerability, an attacker must authenticate to a targeted device. This access requirement may reduce the likelihood of a successful exploit.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco cli
cisco ios_xr

A vulnerability in the command-line interface (CLI) of Cisco IOS XR Software could allow an authenticated, remote attacker to access sensitive information The vulnerability is due to insufficient data protection of sensitive information An attacker could exploit this vulnerability by issuing specific system commands on the affected device Cisc ...

NVD-CWE-noinfo http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3342 http://www.securityfocus.com/bid/69735 https://exchange.xforce.ibmcloud.com/vulnerabilities/95884 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140915-CVE-2014-3342

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-3342

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect