CVE-2014-0719 — Cisco IPS Sensor Software vulnerability

CWE-2644 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.2%
top 54.16%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco IPS Sensor SoftwareCisco IPS
Timeline
PublishedFeb 22
Latest updateMay 17

Description

The control-plane access-list implementation in Cisco IPS Software before 7.1(8p2)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (MainApp process outage) via crafted packets to TCP port 7000, aka Bug ID CSCui67394.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages2 packages

â–¶NVDcisco/ips_sensor_software7.1\(1\)e4+7
â–¶ciscocisco/ips

🔴Vulnerability Details

1
GHSA
GHSA-5gvh-rwcr-4f9w: The control-plane access-list implementation in Cisco IPS Software before 7↗2022-05-17
â–¶

📋Vendor Advisories

2
Cisco
Multiple Vulnerabilities in Cisco IPS Software↗2014-02-20
â–¶
Cisco
Multiple Vulnerabilities in Cisco IPS Software↗
â–¶
CVE-2014-0719 — Cisco IPS Sensor Software vulnerability | cvebase