What is the severity of CVE-2014-2537?

CVE-2014-2537 has a high severity due to its potential to lead to a denial of service through memory consumption.

How do I fix CVE-2014-2537?

To fix CVE-2014-2537, upgrade Sophos UTM to version 9.109 or later.

What versions of Sophos UTM are affected by CVE-2014-2537?

CVE-2014-2537 affects Sophos UTM versions up to 9.108 and several specific versions including 8.3, 9.007, 9.107, and others.

What is the impact of CVE-2014-2537 on Sophos UTM?

The impact of CVE-2014-2537 is a potential denial of service due to a memory leak in the TCP stack.

Who can exploit CVE-2014-2537?

CVE-2014-2537 can be exploited by remote attackers to cause a denial of service.

Vulnerability/
CVE-2014-2537

high

7.8

CWE

399

18/3/2014

12/4/2025

CVE-2014-2537

First published: Tue Mar 18 2014(Updated: )

Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Sophos Unified Threat Management	<=9.108
Sophos Unified Threat Management	=8.3
Sophos Unified Threat Management	=9.007
Sophos Unified Threat Management	=9.107
Sophos Unified Threat Management	=110
Sophos Unified Threat Management	=120
Sophos Unified Threat Management	=220
Sophos Unified Threat Management	=320
Sophos Unified Threat Management	=425
Sophos Unified Threat Management	=525
Sophos Unified Threat Management	=625
All of
Any of
Sophos Unified Threat Management	<=9.108
Sophos Unified Threat Management	=8.3
Sophos Unified Threat Management	=9.007
Sophos Unified Threat Management	=9.107
Any of
Sophos Unified Threat Management	=110
Sophos Unified Threat Management	=120
Sophos Unified Threat Management	=220
Sophos Unified Threat Management	=320
Sophos Unified Threat Management	=425
Sophos Unified Threat Management	=525
Sophos Unified Threat Management	=625

Remedy

http://blogs.sophos.com/2014/02/20/utm-up2date-9-109/

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-2537?
CVE-2014-2537 has a high severity due to its potential to lead to a denial of service through memory consumption.
How do I fix CVE-2014-2537?
To fix CVE-2014-2537, upgrade Sophos UTM to version 9.109 or later.
What versions of Sophos UTM are affected by CVE-2014-2537?
CVE-2014-2537 affects Sophos UTM versions up to 9.108 and several specific versions including 8.3, 9.007, 9.107, and others.
What is the impact of CVE-2014-2537 on Sophos UTM?
The impact of CVE-2014-2537 is a potential denial of service due to a memory leak in the TCP stack.
Who can exploit CVE-2014-2537?
CVE-2014-2537 can be exploited by remote attackers to cause a denial of service.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/remedy
agent/author
agent/description
agent/first-publish-date
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
agent/softwarecombine
agent/tags
agent/event
vendor/sophos
canonical/sophos unified threat management
version/sophos unified threat management/9.108
version/sophos unified threat management/8.3
version/sophos unified threat management/9.007
version/sophos unified threat management/9.107
version/sophos unified threat management/110
version/sophos unified threat management/120
version/sophos unified threat management/220
version/sophos unified threat management/320
version/sophos unified threat management/425
version/sophos unified threat management/525
version/sophos unified threat management/625