CVE-2014-3359 : Detail

CVE-2014-3359

1.36%V3
Network
2014-09-25
08h00 +00:00
2017-08-28
10h57 +00:00
Notifications for a CVE
Stay informed of any changes for a specific CVE.
Notifications manage

CVE Descriptions

Memory leak in Cisco IOS 15.1 through 15.4 and IOS XE 3.4.xS, 3.5.xS, 3.6.xS, and 3.7.xS before 3.7.6S; 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S; and 3.11.xS before 3.12S allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed DHCPv6 packets, aka Bug ID CSCum90081.

CVE Informations

Related Weaknesses

CWE-ID Weakness Name Source
CWE-399 Category : Resource Management Errors
Weaknesses in this category are related to improper management of system resources.

Metrics

Metrics Score Severity CVSS Vector Source
V2 7.8 AV:N/AC:L/Au:N/C:N/I:N/A:C [email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

Products Mentioned

Configuraton 0

Cisco>>Ios >> Version 15.1

Cisco>>Ios >> Version 15.2

Cisco>>Ios >> Version 15.3

Cisco>>Ios >> Version 15.4

Cisco>>Ios_xe >> Version 3.4.0s

Cisco>>Ios_xe >> Version 3.4.1s

Cisco>>Ios_xe >> Version 3.4.2s

Cisco>>Ios_xe >> Version 3.4.3s

Cisco>>Ios_xe >> Version 3.4.4s

Cisco>>Ios_xe >> Version 3.4.5s

Cisco>>Ios_xe >> Version 3.5.0s

Cisco>>Ios_xe >> Version 3.5.1s

Cisco>>Ios_xe >> Version 3.5.2s

Cisco>>Ios_xe >> Version 3.6s\(.0\)

Cisco>>Ios_xe >> Version 3.6s\(.1\)

Cisco>>Ios_xe >> Version 3.6s\(.2\)

Cisco>>Ios_xe >> Version 3.7\(0\)s

Cisco>>Ios_xe >> Version 3.7\(1\)as

    Cisco>>Ios_xe >> Version 3.7\(2\)s

      Cisco>>Ios_xe >> Version 3.7\(3\)s

        Cisco>>Ios_xe >> Version 3.7\(4\)s

          Cisco>>Ios_xe >> Version 3.7\(5\)s

            Cisco>>Ios_xe >> Version 3.8.0s

            Cisco>>Ios_xe >> Version 3.8s\(.0\)

            Cisco>>Ios_xe >> Version 3.8s\(.1\)

            Cisco>>Ios_xe >> Version 3.8s\(.2\)

            Cisco>>Ios_xe >> Version 3.9s\(.0\)

              Cisco>>Ios_xe >> Version 3.9s\(.1\)

                Cisco>>Ios_xe >> Version 3.9s\(.2\)

                  Cisco>>Ios_xe >> Version 3.10

                  Cisco>>Ios_xe >> Version 3.10.0s

                  Cisco>>Ios_xe >> Version 3.11.0s

                  Cisco>>Ios_xe >> Version 3.11.1s

                  Cisco>>Ios_xe >> Version 3.11.2s

                  References

                  http://www.securitytracker.com/id/1030895
                  Tags : vdb-entry, x_refsource_SECTRACK
                  http://www.securityfocus.com/bid/70140
                  Tags : vdb-entry, x_refsource_BID