CVE-2014-2537
Severity CVSS v4.0:
Pending analysis
Type:
CWE-399
Resource Management Errors
Publication date:
18/03/2014
Last modified:
12/04/2025
Description
Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
Impact
Base Score 2.0
7.80
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:sophos:unified_threat_management_software:*:*:*:*:*:*:*:* | 9.108 (including) | |
| cpe:2.3:a:sophos:unified_threat_management_software:8.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sophos:unified_threat_management_software:9.007:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sophos:unified_threat_management_software:9.107:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:110:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:120:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:220:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:320:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:425:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:525:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sophos:unified_threat_management:625:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://blogs.sophos.com/2014/02/20/utm-up2date-9-109/
- http://secunia.com/advisories/57344
- http://www.securityfocus.com/bid/66231
- http://www.securitytracker.com/id/1029920
- http://blogs.sophos.com/2014/02/20/utm-up2date-9-109/
- http://secunia.com/advisories/57344
- http://www.securityfocus.com/bid/66231
- http://www.securitytracker.com/id/1029920