CVE-2014-2111 — Improper Input Validation in Cisco IOS

CWE-20 — Improper Input Validation CWE-3995 documents5 sources

Severity

7.1HIGHNVD

EPSS

0.8%

top 26.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS

Timeline

PublishedMar 27

Latest updateMay 17

Description

The Application Layer Gateway (ALG) module in Cisco IOS 12.2 through 12.4 and 15.0 through 15.4, when NAT is used, allows remote attackers to cause a denial of service (device reload) via crafted DNS packets, aka Bug ID CSCue00996.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/ios8 versions+7

🔴Vulnerability Details

GHSA

GHSA-wmxv-979m-7vpj: The Application Layer Gateway (ALG) module in Cisco IOS 12↗2022-05-17

▶

CVEList

CVE-2014-2111: The Application Layer Gateway (ALG) module in Cisco IOS 12↗2014-03-27

▶

📋Vendor Advisories

CISA ICS

Rockwell Automation Stratix 5900↗2017-05-10

▶

Cisco

Cisco IOS Software Network Address Translation Vulnerabilities↗2014-03-26

▶