CVE-2014-0710
Severity CVSS v4.0:
Pending analysis
Type:
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Publication date:
22/02/2014
Last modified:
11/04/2025
Description
Race condition in the cut-through proxy feature in Cisco Firewall Services Module (FWSM) Software 3.x before 3.2(28) and 4.x before 4.1(15) allows remote attackers to cause a denial of service (device reload) via certain matching traffic, aka Bug ID CSCuj16824.
Impact
Base Score 2.0
7.10
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:cisco:firewall_services_module_software:3.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(2\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(3\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(4\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(5\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(6\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(7\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(8\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(9\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(10\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(11\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(12\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(13\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(14\):*:*:*:*:*:*:* | ||
| cpe:2.3:a:cisco:firewall_services_module_software:3.1\(15\):*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page