CVE-2014-2141

Cisco ONS 15454 System Software <= 9.6 - Authenticated Denial of Service via Session Termination

Title source: llm
STIX 2.1

Description

The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a denial of service (card reset) via crafted session-close actions, aka Bug ID CSCug97416.

References (2)

Core 2
Core References

Scores

EPSS 0.0139
EPSS Percentile 69.1%

Details

CWE
CWE-119
Status published
Products (9)
cisco/cisco_ons_15454_system_software 9.0
cisco/cisco_ons_15454_system_software 9.1
cisco/cisco_ons_15454_system_software 9.2
cisco/cisco_ons_15454_system_software 9.2.1
cisco/cisco_ons_15454_system_software 9.2.2
cisco/cisco_ons_15454_system_software 9.3
cisco/cisco_ons_15454_system_software 9.4
cisco/cisco_ons_15454_system_software < 9.6
cisco/ons_15454
Published Apr 10, 2014
Tracked Since Feb 18, 2026