CVE-2014-3269 โ€” Improper Input Validation in Cisco IOS XE

CWE-20 โ€” Improper Input ValidationCWE-3994 documents4 sources
Severity
6.8MEDIUMNVD
EPSS
0.3%
top 45.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS XE
Timeline
PublishedMay 20
Latest updateMay 17

Description

The SNMP module in Cisco IOS XE 3.5E allows remote authenticated users to cause a denial of service (device reload) by polling frequently, aka Bug ID CSCug65204.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 8.0 | Impact: 6.9

Affected Packages1 packages

โ–ถNVDcisco/ios_xe3.5e

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-35vq-jv5m-667c: The SNMP module in Cisco IOS XE 3โ†—2022-05-17
โ–ถ
CVEList
CVE-2014-3269: The SNMP module in Cisco IOS XE 3โ†—2014-05-20
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Cisco
Cisco IOS XE Software SNMP Denial of Service Vulnerabilityโ†—2014-05-19
โ–ถ
CVE-2014-3269 โ€” Improper Input Validation in Cisco | cvebase