CVE-2014-0704
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
06/03/2014
Last modified:
12/04/2025
Description
The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.
Impact
Base Score 2.0
7.10
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.108:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.5:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.8:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.11:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.196:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.206.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.217.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.219.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.1.171.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.1.181.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.1.185.0:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:wireless_lan_controller_software:4.1m:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page