CVE-2014-7997 - Vulnerability Details

Vendors	Products
Cisco	Aironet 1040 Aironet 1140 Aironet 1260 Aironet 3500 Aironet 3600 Aironet 3600e Aironet 3600i Aironet 3600p Aironet 600 Office Extend Aironet Ap1100 Aironet Ap1130ag Aironet Ap1131 Aironet Ap1200 Aironet Ap1230ag Aironet Ap1240 Aironet Ap1240ag Aironet Ap1300 Aironet Ap1400 Aironet Ap340 Aironet Ap350 Ios

Link	Providers
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997
http://www.securitytracker.com/id/1031218
https://exchange.xforce.ibmcloud.com/vulnerabilities/98691

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2014-11-14T00:00:00", "descriptions": [{"lang": "en", "value": "The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-07T15:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "cisco-aironet-cve20147997-dos(98691)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98691"}, {"name": "1031218", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1031218"}, {"name": "20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2014-7997", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "cisco-aironet-cve20147997-dos(98691)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98691"}, {"name": "1031218", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1031218"}, {"name": "20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T13:03:27.650Z"}, "title": "CVE Program Container", "references": [{"name": "cisco-aironet-cve20147997-dos(98691)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98691"}, {"name": "1031218", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1031218"}, {"name": "20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2014-7997", "datePublished": "2014-11-15T02:00:00", "dateReserved": "2014-10-08T00:00:00", "dateUpdated": "2024-08-06T13:03:27.650Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2014-11-14T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-09-07T15:57:01 (string)

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

}

references : [ »

0 : { »

name : cisco-aironet-cve20147997-dos(98691) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 (string)

}

1 : { »

name : 1031218 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1031218 (string)

}

2 : { »

name : 20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : psirt@cisco.com (string)

ID : CVE-2014-7997 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : cisco-aironet-cve20147997-dos(98691) (string)

refsource : XF (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 (string)

}

1 : { »

name : 1031218 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1031218 (string)

}

2 : { »

name : 20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty (string)

refsource : CISCO (string)

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T13:03:27.650Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : cisco-aironet-cve20147997-dos(98691) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 (string)

}

1 : { »

name : 1031218 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1031218 (string)

}

2 : { »

name : 20141114 Cisco Aironet DHCP Denial of Service Vulnerabilty (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

2 : x_transferred (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

assignerShortName : cisco (string)

cveId : CVE-2014-7997 (string)

datePublished : 2014-11-15T02:00:00 (string)

dateReserved : 2014-10-08T00:00:00 (string)

dateUpdated : 2024-08-06T13:03:27.650Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:*", "matchCriteriaId": "B6230A85-30D2-4934-A8A0-11499B7B09F8", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:aironet_1040:-:*:*:*:*:*:*:*", "matchCriteriaId": "7361553C-439A-4EFC-B47C-5D099132A9BD", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_1140:-:*:*:*:*:*:*:*", "matchCriteriaId": "42E54595-DEA2-4CDA-B218-89B034EB129F", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_1260:-:*:*:*:*:*:*:*", "matchCriteriaId": "900C8376-9891-4CAF-8873-1CE78CFEB050", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_3500:-:*:*:*:*:*:*:*", "matchCriteriaId": "D385DFB0-FE3D-4217-B17A-1AB4A34363AA", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_3600:-:*:*:*:*:*:*:*", "matchCriteriaId": "86AFB6B7-F5A5-4F87-A149-53FC82D5D863", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_3600e:-:*:*:*:*:*:*:*", "matchCriteriaId": "35E201F1-02D0-4023-9A50-3D8F1A9EC357", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_3600i:-:*:*:*:*:*:*:*", "matchCriteriaId": "65CBE08A-4F2B-452D-B3B3-034DE13E86CF", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_3600p:-:*:*:*:*:*:*:*", "matchCriteriaId": "2CE92197-190B-466A-B7A7-268051DA4395", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_600_office_extend:-:*:*:*:*:*:*:*", "matchCriteriaId": "903A79E0-184A-4CFB-96FA-A3E0474503FD", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*", "matchCriteriaId": "6D954F30-8AD0-41E9-8D62-BEFEBDCB3B6D", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1130ag:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D56D069-0E19-4E60-A30A-23C27964B674", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1131:*:*:*:*:*:*:*:*", "matchCriteriaId": "DA740581-ED86-4822-9516-BCCA4C267561", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*", "matchCriteriaId": "2E8B5553-7295-4786-9F81-B4527EAD4F0B", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1230ag:*:*:*:*:*:*:*:*", "matchCriteriaId": "01A48851-D4D5-4ABC-A44A-F82A97882C45", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1240:*:*:*:*:*:*:*:*", "matchCriteriaId": "6AAA8DE4-4E1D-4286-846D-0381BF68632F", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1240ag:*:*:*:*:*:*:*:*", "matchCriteriaId": "17BBE092-4156-45E8-A7ED-55C2765580CC", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1300:*:*:*:*:*:*:*:*", "matchCriteriaId": "F02967F7-FC29-460E-A07E-99397E55A63F", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap1400:*:*:*:*:*:*:*:*", "matchCriteriaId": "D84F4CEF-F599-48EE-A5FA-252880332A84", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap340:*:*:*:*:*:*:*:*", "matchCriteriaId": "9DBDCD08-D3E9-4E72-BC5E-A9A9453D32A8", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap340:11.21:*:*:*:*:*:*:*", "matchCriteriaId": "3E8F1355-5A18-4692-B54C-083291E751E3", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap350:*:*:*:*:*:*:*:*", "matchCriteriaId": "7AF8AA1B-17C3-49E3-BA0F-17FFCE2AAE03", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:aironet_ap350:11.21:*:*:*:*:*:*:*", "matchCriteriaId": "97943532-2C6A-4867-BD40-1B848BD2009A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281."}, {"lang": "es", "value": "La implementaci\u00f3n DHCP en Cisco IOS en puntos de acceso Aironet no maneja debidamente las condiciones de error con concesiones cortas ni los intentos de renovaci\u00f3n de concesi\u00f3n sin \u00e9xito, lo que permite a atacantes remotos causar una denegaci\u00f3n de servicio (reinicio del dispositivo) mediante la activaci\u00f3n de una transici\u00f3n a un estado de recuperaci\u00f3n con la intenci\u00f3n de provocar un reinicio de la interfaz de red, pero en realidad implica un reinicio completo del dispositivo, tambi\u00e9n conocido como Bug ID CSCtn16281."}], "id": "CVE-2014-7997", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-11-15T02:59:01.517", "references": [{"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997"}, {"source": "psirt@cisco.com", "url": "http://www.securitytracker.com/id/1031218"}, {"source": "psirt@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98691"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1031218"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98691"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:cisco:ios:-:*:*:*:*:*:*:* (string)

matchCriteriaId : B6230A85-30D2-4934-A8A0-11499B7B09F8 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

1 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:cisco:aironet_1040:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 7361553C-439A-4EFC-B47C-5D099132A9BD (string)

vulnerable : false (boolean)

}

1 : { »

criteria : cpe:2.3:h:cisco:aironet_1140:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 42E54595-DEA2-4CDA-B218-89B034EB129F (string)

vulnerable : false (boolean)

}

2 : { »

criteria : cpe:2.3:h:cisco:aironet_1260:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 900C8376-9891-4CAF-8873-1CE78CFEB050 (string)

vulnerable : false (boolean)

}

3 : { »

criteria : cpe:2.3:h:cisco:aironet_3500:-:*:*:*:*:*:*:* (string)

matchCriteriaId : D385DFB0-FE3D-4217-B17A-1AB4A34363AA (string)

vulnerable : false (boolean)

}

4 : { »

criteria : cpe:2.3:h:cisco:aironet_3600:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 86AFB6B7-F5A5-4F87-A149-53FC82D5D863 (string)

vulnerable : false (boolean)

}

5 : { »

criteria : cpe:2.3:h:cisco:aironet_3600e:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 35E201F1-02D0-4023-9A50-3D8F1A9EC357 (string)

vulnerable : false (boolean)

}

6 : { »

criteria : cpe:2.3:h:cisco:aironet_3600i:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 65CBE08A-4F2B-452D-B3B3-034DE13E86CF (string)

vulnerable : false (boolean)

}

7 : { »

criteria : cpe:2.3:h:cisco:aironet_3600p:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 2CE92197-190B-466A-B7A7-268051DA4395 (string)

vulnerable : false (boolean)

}

8 : { »

criteria : cpe:2.3:h:cisco:aironet_600_office_extend:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 903A79E0-184A-4CFB-96FA-A3E0474503FD (string)

vulnerable : false (boolean)

}

9 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6D954F30-8AD0-41E9-8D62-BEFEBDCB3B6D (string)

vulnerable : false (boolean)

}

10 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1130ag:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 8D56D069-0E19-4E60-A30A-23C27964B674 (string)

vulnerable : false (boolean)

}

11 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1131:*:*:*:*:*:*:*:* (string)

matchCriteriaId : DA740581-ED86-4822-9516-BCCA4C267561 (string)

vulnerable : false (boolean)

}

12 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 2E8B5553-7295-4786-9F81-B4527EAD4F0B (string)

vulnerable : false (boolean)

}

13 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1230ag:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 01A48851-D4D5-4ABC-A44A-F82A97882C45 (string)

vulnerable : false (boolean)

}

14 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1240:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 6AAA8DE4-4E1D-4286-846D-0381BF68632F (string)

vulnerable : false (boolean)

}

15 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1240ag:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 17BBE092-4156-45E8-A7ED-55C2765580CC (string)

vulnerable : false (boolean)

}

16 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1300:*:*:*:*:*:*:*:* (string)

matchCriteriaId : F02967F7-FC29-460E-A07E-99397E55A63F (string)

vulnerable : false (boolean)

}

17 : { »

criteria : cpe:2.3:h:cisco:aironet_ap1400:*:*:*:*:*:*:*:* (string)

matchCriteriaId : D84F4CEF-F599-48EE-A5FA-252880332A84 (string)

vulnerable : false (boolean)

}

18 : { »

criteria : cpe:2.3:h:cisco:aironet_ap340:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 9DBDCD08-D3E9-4E72-BC5E-A9A9453D32A8 (string)

vulnerable : false (boolean)

}

19 : { »

criteria : cpe:2.3:h:cisco:aironet_ap340:11.21:*:*:*:*:*:*:* (string)

matchCriteriaId : 3E8F1355-5A18-4692-B54C-083291E751E3 (string)

vulnerable : false (boolean)

}

20 : { »

criteria : cpe:2.3:h:cisco:aironet_ap350:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 7AF8AA1B-17C3-49E3-BA0F-17FFCE2AAE03 (string)

vulnerable : false (boolean)

}

21 : { »

criteria : cpe:2.3:h:cisco:aironet_ap350:11.21:*:*:*:*:*:*:* (string)

matchCriteriaId : 97943532-2C6A-4867-BD40-1B848BD2009A (string)

vulnerable : false (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

operator : AND (string)

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281. (string)

}

1 : { »

lang : es (string)

value : La implementación DHCP en Cisco IOS en puntos de acceso Aironet no maneja debidamente las condiciones de error con concesiones cortas ni los intentos de renovación de concesión sin éxito, lo que permite a atacantes remotos causar una denegación de servicio (reinicio del dispositivo) mediante la activación de una transición a un estado de recuperación con la intención de provocar un reinicio de la interfaz de red, pero en realidad implica un reinicio completo del dispositivo, también conocido como Bug ID CSCtn16281. (string)

}

]

id : CVE-2014-7997 (string)

lastModified : 2025-04-12T10:46:40.837 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : ADJACENT_NETWORK (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 6.1 (number)

confidentialityImpact : NONE (string)

integrityImpact : NONE (string)

vectorString : AV:A/AC:L/Au:N/C:N/I:N/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 6.5 (number)

impactScore : 6.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2014-11-15T02:59:01.517 (string)

references : [ »

0 : { »

source : psirt@cisco.com (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 (string)

}

1 : { »

source : psirt@cisco.com (string)

url : http://www.securitytracker.com/id/1031218 (string)

}

2 : { »

source : psirt@cisco.com (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-7997 (string)

}

4 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : http://www.securitytracker.com/id/1031218 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://exchange.xforce.ibmcloud.com/vulnerabilities/98691 (string)

}

]

sourceIdentifier : psirt@cisco.com (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-399 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Metrics

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object