CVE-2014-3295

Cisco Nx-os < 6.2\(2a\) - Authentication Bypass

Title source: rule

Description

The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309.

References (5)

Scores

EPSS 0.0088
EPSS Percentile 75.2%

Classification

CWE
CWE-287
Status draft

Affected Products (34)

cisco/nx-os < 6.2\(2a\)
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
cisco/nx-os
... and 19 more

Timeline

Published Jun 14, 2014
Tracked Since Feb 18, 2026