CVE-2014-3321

Published Jul 18, 2014

Last updated 8 years ago

Overview

Description: Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149.
Source: ykramarz@cisco.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5.7
Impact score: 6.9
Exploitability score: 5.5
Vector string: AV:A/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23014C8E-362A-45AB-9628-B7153E729430",
            "versionEndIncluding": "4.3.4"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:4.3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "074571B4-65EF-451A-89DC-0797F6E4BFEA"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:4.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D909532E-85F5-4201-8BFF-561A21998D97"
          },
          {
            "criteria": "cpe:2.3:o:cisco:ios_xr:4.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73D962D3-563F-4CDE-B51D-224D7995FBC9"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:asr_9000_rsp440_router:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A580194-1B06-4D71-B618-345046DBA9C6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9001:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "324C97E6-1810-404F-9F45-6240F99FF039"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9006:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "57EB55BB-41B7-40A1-B6F5-142FE8AB4C16"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9010:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "433F4A82-04A4-4EAA-8C19-F7581DCD8D29"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9904:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A93212A4-50AB-42E7-89A4-5FBBAEA050C3"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9912:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5445CC54-ACFB-4070-AF26-F91FEAA85181"
          },
          {
            "criteria": "cpe:2.3:h:cisco:asr_9922:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D7AA58E5-D7E1-48CF-93FF-C60EB85B2BC7"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References