CVE-2014-0685

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2014-0685
Cisco Nexus 1000V InterCloud 5.2(1)IC1(1.2) and earlier for VMware allows remote attackers to bypass ACL deny statements via crafted (1) IGMPv2 or (2) IGMPv3 packets, aka Bug ID CSCug61691.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0685 Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=34130 Vendor Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:cisco_nexus_1000v_intercloud:*:*:*:*:*:vmware:*:*
History

No history.

Information

Published : 2014-05-07 10:55

Updated : 2024-02-04 18:35

NVD link : CVE-2014-0685

Mitre link : CVE-2014-0685

CVE.ORG link : CVE-2014-0685

JSON object : View

Products Affected

cisco

  • cisco_nexus_1000v_intercloud
CWE
CWE-264

Permissions, Privileges, and Access Controls