CVE-2014-7998
Severity CVSS v4.0:
Pending analysis
Type:
CWE-264
Permissions, Privileges, and Access Control
Publication date:
15/11/2014
Last modified:
12/04/2025
Description
Cisco IOS on Aironet access points, when "dot11 aaa authenticator" debugging is enabled, allows remote attackers to cause a denial of service via a malformed EAP packet, aka Bug ID CSCul15509.
Impact
Base Score 2.0
7.10
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_1040:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_1140:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_1260:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_3500:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_3600:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_3600e:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_3600i:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_3600p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_600_office_extend:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_ap1130ag:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_ap1131:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:cisco:aironet_ap1230ag:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7998
- http://www.securitytracker.com/id/1031219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98692
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7998
- http://www.securitytracker.com/id/1031219
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98692