CVE-2014-2201

Published May 26, 2014

Last updated 4 months ago

CVSS info 7.8

Overview

Description: The Message Transfer Service (MTS) in Cisco NX-OS before 6.2(7) on MDS 9000 devices and 6.0 before 6.0(2) on Nexus 7000 devices allows remote attackers to cause a denial of service (NULL pointer dereference and kernel panic) via a large volume of crafted traffic, aka Bug ID CSCtw98915.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Evaluator

Comment: Per: http://cwe.mitre.org/data/definitions/476.html "CWE-476: NULL Pointer Dereference"
Impact: -
Solution: -

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.0\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "48926DA6-2020-4D4F-AD12-555163C6C352"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:nexus_7000:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12180BEB-7F21-4FA7-ABD2-E9A8EA7340F3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_7000_10-slot:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B22B3865-30E9-4B5A-A37D-DC33F1150FFE"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_7000_18-slot:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "459A7F11-52BF-4AD6-B495-4C4D6C050493"
          },
          {
            "criteria": "cpe:2.3:h:cisco:nexus_7000_9-slot:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB73543E-9B5B-4BA9-8FB4-666AF5AC8B6B"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "05DDEA84-A3C8-47C0-BA73-48CA7707A73D",
            "versionEndIncluding": "6.2\\(5a\\)"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.2\\(1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD54E122-6102-451E-92BF-AF71D98AEBE0"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.2\\(1n\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F0244F2-D8AA-469F-8AFD-655CA4F5F650"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.2\\(3\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C857C0F-B023-4CF7-9916-6735C40425F9"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.2\\(3n\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DD503699-A02E-4A62-827F-0906C94448EF"
          },
          {
            "criteria": "cpe:2.3:o:cisco:nx-os:6.2\\(5\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4C558C0-ECA4-408D-A5DF-2A175E48EAE2"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:mds_9000:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F2ED90B-DDBA-49DE-AC78-20E7D77C8858"
          },
          {
            "criteria": "cpe:2.3:h:cisco:mds_9100:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "54C0D908-D7BA-48C3-9963-14A3A32A2662"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Evaluator

Configurations

References