Home

CVE-2014-2113

Description

Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow remote attackers to cause a denial of service (I/O memory consumption and device reload) via a malformed IPv6 packet, aka Bug ID CSCui59540.

Risk Information

Base Score
8.6
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.104

Associated Vulnerability

VulnerabilityOS Platform
Cisco IOS Software Crafted IPv6 Packet Denial of Service Vulnerability For Cisco IOSNCM
Cisco IOS Software Crafted IPv6 Packet Denial of Service Vulnerability For Cisco IOS XE SoftwareNCM
Improper Input Validation Vulnerability (CVE-2014-2113)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1706090Security Update for Cisco IOS Amsterdam-17.2.1r
PATCH-1706107Security Update for Cisco IOS XE Software 5.2(1)SV5(1.3a)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234