CVE-2014-5418

Published Jan 17, 2015

Last updated 3 months ago

CVSS info 7.8

Overview

Description: GE Multilink ML800, ML1200, ML1600, and ML2400 switches with firmware 4.2.1 and earlier and Multilink ML810, ML3000, and ML3100 switches with firmware 5.2.0 and earlier allow remote attackers to cause a denial of service (resource consumption or reboot) via crafted packets.
Source: ics-cert@hq.dhs.gov
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-399

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml810_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D14EC388-6D6C-49BA-9436-9708236B5BD0",
            "versionEndIncluding": "5.2.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml810:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81DC26E5-D3D7-41C6-B654-B06FA0461451"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml1600_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D2F6933C-8017-4BE1-82D3-81785EA99BB6",
            "versionEndIncluding": "4.2.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml1600:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "620703E4-1D78-44CB-B353-517A8AB2A815"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml1200_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "220E7CFA-4C66-498A-B0FA-1F4362D50732",
            "versionEndIncluding": "4.2.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml1200:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1179F179-510A-4A97-8365-B81C0E0FC605"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml3000_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8CCA289-8E58-41E9-9AD3-860A6B373EE3",
            "versionEndIncluding": "5.2.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml3000:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "359B13A0-4CCC-4E7A-A5C0-BF568EE01282"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml2400_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2F63F2FB-8E3A-4691-A74E-32DA333030DC",
            "versionEndIncluding": "4.2.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml2400:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "426A283A-540C-43F2-8397-52668BADDEB8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml3100_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "339C1069-C126-4840-92DC-0DBE17FD764C",
            "versionEndIncluding": "5.2.0"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml3100:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5A16124C-6614-4EF1-912B-D16145997AF6"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:ge:multilink_ml800_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12A4D84B-AA33-4FC4-BBDF-AD0A0324D80F",
            "versionEndIncluding": "4.2.1"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:ge:multilink_ml800:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A00E85C-1B21-43F7-8323-F759216BFB90"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References