Vulnerability Details : CVE-2014-0719
The control-plane access-list implementation in Cisco IPS Software before 7.1(8p2)E4 and 7.2 before 7.2(2)E4 allows remote attackers to cause a denial of service (MainApp process outage) via crafted packets to TCP port 7000, aka Bug ID CSCui67394.
Vulnerability category: Denial of service
Products affected by CVE-2014-0719
- cpe:2.3:a:cisco:ips_sensor_software:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(6\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(7\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.2\(1\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(4\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(3\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(8\)e4:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:ips_sensor_software:7.1\(2\)e4:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-0719
0.15%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 52 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-0719
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2014-0719
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-0719
-
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140219-ips
Multiple Vulnerabilities in Cisco IPS SoftwareVendor Advisory
Jump to