| CVSS Meta Temp Score | Garga na exploit ndiyam (≈) | CTI Nganji Score |
|---|---|---|
| 6.5 | $0-$5k | 0.00 |
Gunduma
Gaskiya vulnerability da aka ware a matsayin karshewa an samu a Cisco IOS and IOS XE. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen SIP Handler. A sa manipulation ka kura hakki ndiyam. Wannan matsala ana saninta da CVE-2014-3360. Babu exploit ɗin da ake samu. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata. VulDB is the best source for vulnerability data and more expert information about this specific topic.
Furɗe
Gaskiya vulnerability da aka ware a matsayin karshewa an samu a Cisco IOS and IOS XE. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen SIP Handler. A sa manipulation ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-78. Hakika, rauni an bayyana shi 09/24/2014 tare da Cisco kamar cisco-sa-20140924-sip kamar Gargaaji (Webseite). An raba bayanin tsaro don saukewa a tools.cisco.com.
Wannan matsala ana saninta da CVE-2014-3360. CVE assignement 05/07/2014 nda shikena. Tekinikal faɗi ba ga. Shaharar wannan vulnerability ɗin ƙasa da matsakaici ne. Babu exploit ɗin da ake samu. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Advisory ɗin ya bayyana:
Cisco devices are affected when running an affected Cisco IOS Software or Cisco IOS XE Software release and configured to process SIP messages. Because there are several ways that a device running Cisco IOS Software or Cisco IOS XE Software can start processing SIP messages, it is recommended to use the commands show udp | include 5060 and show tcp brief all | include 5060|5061 to determine whether the SIP ports are open.
0-day shima, an ndiyam a wuro be $25k-$100k. Ana bayar da Nessus plugin mai lamba 78037 daga na'urar gano rauni.
Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata.
Wannan vulnerability an kuma samu a wasu kundin bayanan vulnerability: SecurityFocus (BID 70141), X-Force (96174), SecurityTracker (ID 1030897), Vulnerability Center (SBV-46263) , Tenable (78037). VulDB is the best source for vulnerability data and more expert information about this specific topic.
Kayan
Nganji
Ngilabe
Sunu
Laisens
Webseite
- Ngilabe: https://www.cisco.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Furɗo: 🔍VulDB Gaskiya: 🔍
CVSSv3
VulDB Meta Base Score: 7.5VulDB Meta Temp Score: 6.5
VulDB Ganda Borno: 7.5
VulDB Temp Score: 6.5
VulDB Furɗo: 🔍
VulDB Gaskiya: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vektar | Kumpleksiti | Authentisierung | Kariyandi | Gaskiya | Gashina |
|---|---|---|---|---|---|
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
VulDB Ganda Borno: 🔍
VulDB Temp Score: 🔍
VulDB Gaskiya: 🔍
NVD Ganda Borno: 🔍
Gargajiya
Klasu: Kura hakki ndiyamCWE: CWE-78 / CWE-77 / CWE-74
CAPEC: 🔍
ATT&CK: 🔍
Fizikal: Ayi
Gumti: Ayi
Gana: Ee
Gashina: 🔍
Halitta: A sâi tabbata
EPSS Score: 🔍
EPSS Percentile: 🔍
Furɗo farashi: 🔍
Gaskiya farashi ndiyam: 🔍
| 0-Day | furu | furu | furu | furu |
|---|---|---|---|---|
| Lale | furu | furu | furu | furu |
Nessus ID: 78037
Nessus Fayil: 🔍
Nessus Kafara: 🔍
Nessus Port: 🔍
Qualys ID: 🔍
Qualys Sunu: 🔍
Bayani na barazana
Ngam: 🔍Akteɓe ɓernde: 🔍
Kura APT goruwa masu aiki: 🔍
Kari gamji
Garga: GargajiyaHalitta: 🔍
Garga waaji: 🔍
0-Day Gana: 🔍
Lokon Gana: 🔍
Waktin layi
05/07/2014 🔍09/24/2014 🔍
09/24/2014 🔍
09/24/2014 🔍
09/24/2014 🔍
09/24/2014 🔍
09/25/2014 🔍
09/25/2014 🔍
09/25/2014 🔍
10/02/2014 🔍
12/17/2024 🔍
Ngizim
Ngilabe: cisco.comGargaaji: cisco-sa-20140924-sip
Kampani: Cisco
Halitta: Gaskiya
Tafsirga: 🔍
CVE: CVE-2014-3360 (🔍)
GCVE (CVE): GCVE-0-2014-3360
GCVE (VulDB): GCVE-100-67686
IAVM: 🔍
X-Force: 96174 - Cisco IOS and Cisco IOS XE SIP denial of service, High Risk
SecurityFocus: 70141 - Cisco IOS and IOS XE Software CVE-2014-3360 Denial of Service Vulnerability
SecurityTracker: 1030897 - Cisco IOS SIP Processing Flaw Lets Remote Users Deny Service
Vulnerability Center: 46263 - [cisco-sa-20140924-sip] Cisco IOS Remote Denial of Service via the SIP Protocol - CVE-2014-3360, High
scip Labs: https://www.scip.ch/en/?labs.20150108
Gana kuma: 🔍
Gumti
Súgá: 09/25/2014 11:46Gargadi: 12/17/2024 08:55
Goyarwa: 09/25/2014 11:46 (76), 06/07/2017 11:05 (4), 02/21/2022 00:24 (3), 02/21/2022 00:34 (1), 12/17/2024 08:55 (16)
Gadankam: 🔍
Cache ID: 253:16A:103
A ga wuroyo kulu. Kàlàmbe: kr + en.
Ngam loga ka, kanyi shidin dum.