Home

CVE-2014-3379

Description

Cisco IOS XR 5.1 and earlier on Network Convergence System 6000 devices allows remote attackers to cause a denial of service (NPU and card hang or reload) via a malformed MPLS packet, aka Bug ID CSCuq10466.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.995

Associated Vulnerability

VulnerabilityOS Platform
Cisco IOS XR Software Malformed MPLS Packet Denial of Service Vulnerability For Cisco Network Convergence System 6000 Series RoutersNCM
Improper Input Validation Vulnerability (CVE-2014-3379)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-1705630Security Update for Cisco Network Convergence System 6000 Series Routers 6.1.4

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234