Home

CVE-2014-3321

Description

Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.443

Associated Vulnerability

VulnerabilityOS Platform
Cisco IOS XR Software MPLS Packet Denial of Service Vulnerability For Cisco ASR 9000 Series Aggregation Services RoutersNCM
Improper Input Validation Vulnerability (CVE-2014-3321)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1705564Security Update for Cisco ASR 9000 Series Aggregation Services Routers 5.3.0.1i.BASE

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234