CVE-2014-3331

Cisco ASR 5000 Series Software 11.0-12.2, 14.0-17.0 - Denial of Service via Crafted TCP Packet

Title source: llm
STIX 2.1

Description

The Session Manager component in Packet Data Network Gateway (aka PGW) in Cisco ASR 5000 Series Software 11.0, 12.0, 12.1, 12.2, 14.0, 15.0, 16.x through 16.1.2, and 17.0 allows remote attackers to cause a denial of service (process crash) via a crafted TCP packet, aka Bug ID CSCuo21914.

References (6)

Core 6
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/60706
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1030747
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/69281
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/95357

Scores

EPSS 0.0174
EPSS Percentile 75.0%

Details

CWE
CWE-20
Status published
Products (10)
cisco/asr_5000_series_software 11.0
cisco/asr_5000_series_software 12.0
cisco/asr_5000_series_software 12.1
cisco/asr_5000_series_software 12.2
cisco/asr_5000_series_software 14.0
cisco/asr_5000_series_software 15.0
cisco/asr_5000_series_software 16.1.0
cisco/asr_5000_series_software 16.1.1
cisco/asr_5000_series_software 16.1.2
cisco/asr_5000_series_software 17.0.0
Published Aug 20, 2014
Tracked Since Feb 18, 2026