What is the severity of CVE-2014-3354?

CVE-2014-3354 is classified as a high severity vulnerability due to its potential to cause denial of service.

How do I fix CVE-2014-3354?

Fixing CVE-2014-3354 involves updating affected Cisco IOS and IOS XE software to a version that includes the security patches.

What are the affected versions in CVE-2014-3354?

CVE-2014-3354 affects Cisco IOS versions 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and several versions of IOS XE.

What is the impact of CVE-2014-3354?

The impact of CVE-2014-3354 is that remote attackers can exploit it to reload the affected Cisco devices, causing a denial of service.

Are there any workarounds for CVE-2014-3354?

Workarounds for CVE-2014-3354 may include disabling RSVP on affected devices, but applying patches is the recommended mitigation.

Vulnerability/
CVE-2014-3354

high

7.8

CWE

25/9/2014

6/8/2024

CVE-2014-3354: Input Validation

First published: Thu Sep 25 2014(Updated: )

Cisco IOS 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, and 15.3 and IOS XE 2.x and 3.x before 3.7.4S; 3.2.xSE and 3.3.xSE before 3.3.2SE; 3.3.xSG and 3.4.xSG before 3.4.4SG; and 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S allow remote attackers to cause a denial of service (device reload) via malformed RSVP packets, aka Bug ID CSCui11547.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS	=12.0
Cisco IOS	=12.2
Cisco IOS	=12.4
Cisco IOS	=15.0
Cisco IOS	=15.1
Cisco IOS	=15.2
Cisco IOS	=15.3
Cisco IOS XE	=2.1
Cisco IOS XE	=2.1.0
Cisco IOS XE	=2.1.1
Cisco IOS XE	=2.1.2
Cisco IOS XE	=2.2
Cisco IOS XE	=2.2.1
Cisco IOS XE	=2.2.2
Cisco IOS XE	=2.2.3
Cisco IOS XE	=2.3
Cisco IOS XE	=2.3.0
Cisco IOS XE	=2.3.1
Cisco IOS XE	=2.3.1t
Cisco IOS XE	=2.3.2
Cisco IOS XE	=2.4
Cisco IOS XE	=2.4.0
Cisco IOS XE	=2.4.1
Cisco IOS XE	=2.4.2
Cisco IOS XE	=2.4.3
Cisco IOS XE	=2.4.4
Cisco IOS XE	=2.5\(.0\)
Cisco IOS XE	=2.5.0
Cisco IOS XE	=2.5.1
Cisco IOS XE	=2.5.2
Cisco IOS XE	=2.6\(.0\)
Cisco IOS XE	=2.6\(.1\)
Cisco IOS XE	=2.6\(.2\)
Cisco IOS XE	=2.6.0
Cisco IOS XE	=2.6.1
Cisco IOS XE	=2.6.2
Cisco IOS XE	=3.1.0s
Cisco IOS XE	=3.1.0sg
Cisco IOS XE	=3.1.1s
Cisco IOS XE	=3.1.1sg
Cisco IOS XE	=3.1.2s
Cisco IOS XE	=3.1.3s
Cisco IOS XE	=3.1.4s
Cisco IOS XE	=3.1s\(.0\)
Cisco IOS XE	=3.1s\(.1\)
Cisco IOS XE	=3.1s\(.2\)
Cisco IOS XE	=3.1s\(.3\)
Cisco IOS XE	=3.2.00.xo.15.0\(2\)xo
Cisco IOS XE	=3.2.0s
Cisco IOS XE	=3.2.0sg
Cisco IOS XE	=3.2.0xo
Cisco IOS XE	=3.2.1s
Cisco IOS XE	=3.2.1se
Cisco IOS XE	=3.2.1sg
Cisco IOS XE	=3.2.2s
Cisco IOS XE	=3.2.2se
Cisco IOS XE	=3.2.2sg
Cisco IOS XE	=3.2.3se
Cisco IOS XE	=3.2.3sg
Cisco IOS XE	=3.2.4sg
Cisco IOS XE	=3.2s\(.0\)
Cisco IOS XE	=3.2s\(.1\)
Cisco IOS XE	=3.2s\(.2\)
Cisco IOS XE	=3.3.0s
Cisco IOS XE	=3.3.0se
Cisco IOS XE	=3.3.0sg
Cisco IOS XE	=3.3.1s
Cisco IOS XE	=3.3.1se
Cisco IOS XE	=3.3.1sg
Cisco IOS XE	=3.3.2s
Cisco IOS XE	=3.3.3s
Cisco IOS XE	=3.3s\(.0\)
Cisco IOS XE	=3.3s\(.1\)
Cisco IOS XE	=3.3s\(.2\)
Cisco IOS XE	=3.4.0as
Cisco IOS XE	=3.4.0s
Cisco IOS XE	=3.4.0sg
Cisco IOS XE	=3.4.1s
Cisco IOS XE	=3.4.1sg
Cisco IOS XE	=3.4.2s
Cisco IOS XE	=3.4.2sg
Cisco IOS XE	=3.4.3s
Cisco IOS XE	=3.4.3sg
Cisco IOS XE	=3.4.4s
Cisco IOS XE	=3.4.5s
Cisco IOS XE	=3.4.xs
Cisco IOS XE	=3.4s\(.0\)
Cisco IOS XE	=3.4s\(.1\)
Cisco IOS XE	=3.4s\(.2\)
Cisco IOS XE	=3.4s\(.3\)
Cisco IOS XE	=3.4s\(.4\)
Cisco IOS XE	=3.4s\(.5\)
Cisco IOS XE	=3.4s\(.6\)
Cisco IOS XE	=3.5.0e
Cisco IOS XE	=3.5.0s
Cisco IOS XE	=3.5.1e
Cisco IOS XE	=3.5.1s
Cisco IOS XE	=3.5.2e
Cisco IOS XE	=3.5.2s
Cisco IOS XE	=3.5.xs
Cisco IOS XE	=3.5e
Cisco IOS XE	=3.5s\(.0\)
Cisco IOS XE	=3.5s\(.1\)
Cisco IOS XE	=3.5s\(.2\)
Cisco IOS XE	=3.6.0s
Cisco IOS XE	=3.6.1s
Cisco IOS XE	=3.6.2s
Cisco IOS XE	=3.6s\(.0\)
Cisco IOS XE	=3.6s\(.1\)
Cisco IOS XE	=3.6s\(.2\)
Cisco IOS XE	=3.7.0s
Cisco IOS XE	=3.7.1s
Cisco IOS XE	=3.7.2s
Cisco IOS XE	=3.7s\(.0\)
Cisco IOS XE	=3.7s\(.1\)
Cisco IOS XE	=3.7s\(.2\)
Cisco IOS XE	=3.7s\(.3\)
Cisco IOS XE	=3.8.0s
Cisco IOS XE	=3.8s\(.0\)
Cisco IOS XE	=3.8s\(.1\)
Cisco IOS XE	=3.8s\(.2\)
Cisco IOS XE	=3.9s\(.0\)
Cisco IOS XE	=3.9s\(.1\)
Cisco IOS XE	=3.9s\(.2\)
Cisco IOS XE	=3.10
Cisco IOS XE	=3.10.0s
Cisco IOS XE	=3.10.1s
Cisco IOS XE	=3.10.1s1
Cisco IOS XE	=3.10.2s
Cisco IOS XE	=3.10s\(.0\)
Cisco IOS XE	=3.12s

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-3354?
CVE-2014-3354 is classified as a high severity vulnerability due to its potential to cause denial of service.
How do I fix CVE-2014-3354?
Fixing CVE-2014-3354 involves updating affected Cisco IOS and IOS XE software to a version that includes the security patches.
What are the affected versions in CVE-2014-3354?
CVE-2014-3354 affects Cisco IOS versions 12.0, 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and several versions of IOS XE.
What is the impact of CVE-2014-3354?
The impact of CVE-2014-3354 is that remote attackers can exploit it to reload the affected Cisco devices, causing a denial of service.
Are there any workarounds for CVE-2014-3354?
Workarounds for CVE-2014-3354 may include disabling RSVP on affected devices, but applying patches is the recommended mitigation.

collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/tags
agent/source
vendor/cisco
canonical/cisco ios
version/cisco ios/12.0
version/cisco ios/12.2
version/cisco ios/12.4
version/cisco ios/15.0
version/cisco ios/15.1
version/cisco ios/15.2
version/cisco ios/15.3
canonical/cisco ios xe
version/cisco ios xe/2.1
version/cisco ios xe/2.1.0
version/cisco ios xe/2.1.1
version/cisco ios xe/2.1.2
version/cisco ios xe/2.2
version/cisco ios xe/2.2.1
version/cisco ios xe/2.2.2
version/cisco ios xe/2.2.3
version/cisco ios xe/2.3
version/cisco ios xe/2.3.0
version/cisco ios xe/2.3.1
version/cisco ios xe/2.3.1t
version/cisco ios xe/2.3.2
version/cisco ios xe/2.4
version/cisco ios xe/2.4.0
version/cisco ios xe/2.4.1
version/cisco ios xe/2.4.2
version/cisco ios xe/2.4.3
version/cisco ios xe/2.4.4
version/cisco ios xe/2.5\(.0\)
version/cisco ios xe/2.5.0
version/cisco ios xe/2.5.1
version/cisco ios xe/2.5.2
version/cisco ios xe/2.6\(.0\)
version/cisco ios xe/2.6\(.1\)
version/cisco ios xe/2.6\(.2\)
version/cisco ios xe/2.6.0
version/cisco ios xe/2.6.1
version/cisco ios xe/2.6.2
version/cisco ios xe/3.1.0s
version/cisco ios xe/3.1.0sg
version/cisco ios xe/3.1.1s
version/cisco ios xe/3.1.1sg
version/cisco ios xe/3.1.2s
version/cisco ios xe/3.1.3s
version/cisco ios xe/3.1.4s
version/cisco ios xe/3.1s\(.0\)
version/cisco ios xe/3.1s\(.1\)
version/cisco ios xe/3.1s\(.2\)
version/cisco ios xe/3.1s\(.3\)
version/cisco ios xe/3.2.00.xo.15.0\(2\)xo
version/cisco ios xe/3.2.0s
version/cisco ios xe/3.2.0sg
version/cisco ios xe/3.2.0xo
version/cisco ios xe/3.2.1s
version/cisco ios xe/3.2.1se
version/cisco ios xe/3.2.1sg
version/cisco ios xe/3.2.2s
version/cisco ios xe/3.2.2se
version/cisco ios xe/3.2.2sg
version/cisco ios xe/3.2.3se
version/cisco ios xe/3.2.3sg
version/cisco ios xe/3.2.4sg
version/cisco ios xe/3.2s\(.0\)
version/cisco ios xe/3.2s\(.1\)
version/cisco ios xe/3.2s\(.2\)
version/cisco ios xe/3.3.0s
version/cisco ios xe/3.3.0se
version/cisco ios xe/3.3.0sg
version/cisco ios xe/3.3.1s
version/cisco ios xe/3.3.1se
version/cisco ios xe/3.3.1sg
version/cisco ios xe/3.3.2s
version/cisco ios xe/3.3.3s
version/cisco ios xe/3.3s\(.0\)
version/cisco ios xe/3.3s\(.1\)
version/cisco ios xe/3.3s\(.2\)
version/cisco ios xe/3.4.0as
version/cisco ios xe/3.4.0s
version/cisco ios xe/3.4.0sg
version/cisco ios xe/3.4.1s
version/cisco ios xe/3.4.1sg
version/cisco ios xe/3.4.2s
version/cisco ios xe/3.4.2sg
version/cisco ios xe/3.4.3s
version/cisco ios xe/3.4.3sg
version/cisco ios xe/3.4.4s
version/cisco ios xe/3.4.5s
version/cisco ios xe/3.4.xs
version/cisco ios xe/3.4s\(.0\)
version/cisco ios xe/3.4s\(.1\)
version/cisco ios xe/3.4s\(.2\)
version/cisco ios xe/3.4s\(.3\)
version/cisco ios xe/3.4s\(.4\)
version/cisco ios xe/3.4s\(.5\)
version/cisco ios xe/3.4s\(.6\)
version/cisco ios xe/3.5.0e
version/cisco ios xe/3.5.0s
version/cisco ios xe/3.5.1e
version/cisco ios xe/3.5.1s
version/cisco ios xe/3.5.2e
version/cisco ios xe/3.5.2s
version/cisco ios xe/3.5.xs
version/cisco ios xe/3.5e
version/cisco ios xe/3.5s\(.0\)
version/cisco ios xe/3.5s\(.1\)
version/cisco ios xe/3.5s\(.2\)
version/cisco ios xe/3.6.0s
version/cisco ios xe/3.6.1s
version/cisco ios xe/3.6.2s
version/cisco ios xe/3.6s\(.0\)
version/cisco ios xe/3.6s\(.1\)
version/cisco ios xe/3.6s\(.2\)
version/cisco ios xe/3.7.0s
version/cisco ios xe/3.7.1s
version/cisco ios xe/3.7.2s
version/cisco ios xe/3.7s\(.0\)
version/cisco ios xe/3.7s\(.1\)
version/cisco ios xe/3.7s\(.2\)
version/cisco ios xe/3.7s\(.3\)
version/cisco ios xe/3.8.0s
version/cisco ios xe/3.8s\(.0\)
version/cisco ios xe/3.8s\(.1\)
version/cisco ios xe/3.8s\(.2\)
version/cisco ios xe/3.9s\(.0\)
version/cisco ios xe/3.9s\(.1\)
version/cisco ios xe/3.9s\(.2\)
version/cisco ios xe/3.10
version/cisco ios xe/3.10.0s
version/cisco ios xe/3.10.1s
version/cisco ios xe/3.10.1s1
version/cisco ios xe/3.10.2s
version/cisco ios xe/3.10s\(.0\)
version/cisco ios xe/3.12s

CVE-2014-3354: Input Validation

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-3354?

How do I fix CVE-2014-3354?

What are the affected versions in CVE-2014-3354?

What is the impact of CVE-2014-3354?

Are there any workarounds for CVE-2014-3354?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2014-3354?

How do I fix CVE-2014-3354?

What are the affected versions in CVE-2014-3354?

What is the impact of CVE-2014-3354?

Are there any workarounds for CVE-2014-3354?