CVE-2014-2183

Published Apr 29, 2014

Last updated 18 days ago

CVSS info 6.3

Overview

Description: The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCun09973.
Source: psirt@cisco.com
NVD status: Modified
Products: ios_xe, asr_1001, asr_1002, asr_1002-x, asr_1002_fixed_router, asr_1004, asr_1006, asr_1013, asr_1023_router

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.3
Impact score: 6.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
            "matchCriteriaId": "98C4014F-BCCA-4175-AD6C-0F9503873A2F",
            "versionEndIncluding": "3.10.2s",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10:*:*:*:*:*:*:*",
            "matchCriteriaId": "1A10EA18-B637-4792-A3CB-E29705893148",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10.0s:*:*:*:*:*:*:*",
            "matchCriteriaId": "D9D9F45C-E71F-4425-A0C7-DFFEEC93C152",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10.1s:*:*:*:*:*:*:*",
            "matchCriteriaId": "26FB3B1A-FB8C-4371-A6D2-AB83ECF17F96",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xe:3.10.1s1:*:*:*:*:*:*:*",
            "matchCriteriaId": "1610738B-DA92-4368-868C-F8DD6C7DC0E4",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      },
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:asr_1001:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "ED7C321E-F083-4AB6-96A0-D6358980441E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1002:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "E4376E56-A21C-4642-A85D-439C8E21CD7F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1002-x:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "444F688F-79D0-4F22-B530-7BD520080B8F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1002_fixed_router:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "0EAE214D-8DD8-4DA3-872A-609E7CE6E606",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1004:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "55DD2272-10C2-43B9-9F13-6DC41DBE179B",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1006:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "7428E0A8-1641-47FB-9CA9-34311DEF660D",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1013:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "854D9594-FE84-4E7B-BA21-A3287F2DC302",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_1023_router:-:*:*:*:*:*:*:*",
            "matchCriteriaId": "399C03D1-C4B2-4DE6-9772-EC0BD88D7FCF",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

Related CVEs

References