Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv2

CVE-2014-3379

Published: 20/09/2014 Updated: 29/08/2017
CVSS v2 Base Score: 6.1 | Impact Score: 6.9 | Exploitability Score: 6.5
VMScore: 543
Vector: AV:A/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Ios Xr

Vulnerability Summary

Cisco IOS XR 5.1 and previous versions on Network Convergence System 6000 devices allows remote malicious users to cause a denial of service (NPU and card hang or reload) via a malformed MPLS packet, aka Bug ID CSCuq10466.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios_xr 4.3.4

cisco ios_xr 4.3.2

cisco ios_xr 4.0.4

cisco ios_xr 4.0.3

cisco ios_xr 3.8.4

cisco ios_xr 3.8.3

cisco ios_xr 3.8.2

cisco ios_xr 3.6.3

cisco ios_xr 3.6.2

cisco ios_xr 3.5

cisco ios_xr 3.4.3

cisco ios_xr 3.3.1

cisco ios_xr 3.3

cisco ios_xr 3.1

cisco ios_xr 3.0.1

cisco ios_xr 5.1.0

cisco ios_xr 4.1.1

cisco ios_xr 4.1

cisco ios_xr 3.9.1

cisco ios_xr 3.9.0

cisco ios_xr 3.7.1

cisco ios_xr 3.7

cisco ios_xr 3.5.2

cisco ios_xr 3.5.1

cisco ios_xr 3.3.4

cisco ios_xr 3.3.3

cisco ios_xr 3.3.2

cisco ios_xr 3.2

cisco ios_xr 3.1.0

cisco ios_xr 4.3.1

cisco ios_xr 4.3.0

cisco ios_xr 4.0.2

cisco ios_xr 4.0.1

cisco ios_xr 3.8.1

cisco ios_xr 3.8.0

cisco ios_xr 3.6.1

cisco ios_xr 3.6

cisco ios_xr 3.4.2

cisco ios_xr 3.4.1

cisco ios_xr 3.2.50

cisco ios_xr 3.2.4

cisco ios_xr 3.0

cisco ios_xr 2.0

cisco ios_xr 4.2.0

cisco ios_xr 4.1.2

cisco ios_xr 4.0.0

cisco ios_xr 3.9.2

cisco ios_xr 3.7.3

cisco ios_xr 3.7.2

cisco ios_xr 3.5.4

cisco ios_xr 3.5.3

cisco ios_xr 3.4

cisco ios_xr 3.3.5

cisco ios_xr 3.2.2

cisco ios_xr 3.2.1

cisco network_convergence_system_6008 -

cisco network_convergence_system_6000 -

Vendor Advisories

Cisco: Cisco IOS XR Software Malformed MPLS Packet Denial of Service Vulnerability
A vulnerability in parsing of malformed Multiprotocol Label Switching (MPLS) packets in Cisco IOS XR Software for Cisco Network Convergence System 6000 Series Routers could allow an unauthenticated, adjacent attacker to cause a lockup and eventual reload of a network processor unit (NPU) and a line card that is processing traffic The vulnerabili ...

References

CWE-20http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3379http://tools.cisco.com/security/center/viewAlert.x?alertId=35776http://www.securitytracker.com/id/1030878http://www.securityfocus.com/bid/69960http://secunia.com/advisories/61372https://exchange.xforce.ibmcloud.com/vulnerabilities/96068https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20140919-CVE-2014-3379
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook