Strix
26.1K

CVE-2014-2004

UnknownEPSS 2.14%

Last modified

CVE-2014-2004 is a vulnerability of currently unknown severity. The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 through 3.10, SEIL/X1 routers 1.00 through 4.50, SEIL/X2 routers 1.00 through 4.50, SEIL/B1 routers 1.00 through 4.50, SEIL/Turbo routers 1.80 through 2.17, and SEIL/neu 2FE Plus routers 1.80 through 2.17 allows remote attackers to cause a denial of service (session termination or concentrator outage) via a crafted TCP packet.. EPSS estimates a 2.14% chance of exploitation in the next 30 days.

Description

The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 through 3.10, SEIL/X1 routers 1.00 through 4.50, SEIL/X2 routers 1.00 through 4.50, SEIL/B1 routers 1.00 through 4.50, SEIL/Turbo routers 1.80 through 2.17, and SEIL/neu 2FE Plus routers 1.80 through 2.17 allows remote attackers to cause a denial of service (session termination or concentrator outage) via a crafted TCP packet.

Metrics

EPSS Probability
2.14%

79.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IijSeil\%2fturbo Firmware1.80
IijSeil\%2fturbo Firmware2.05
IijSeil\%2fturbo Firmware2.15
IijSeil\%2fturbo Firmware2.16
IijSeil\%2fturbo Firmware2.17
IijSeil\/TurboAll versions
IijSeil\%2fneu 2fe Plus Firmware1.80
IijSeil\%2fneu 2fe Plus Firmware2.05
IijSeil\%2fneu 2fe Plus Firmware2.15
IijSeil\%2fneu 2fe Plus Firmware2.16
IijSeil\%2fneu 2fe Plus Firmware2.17
IijSeil\/Neu 2fe PlusAll versions
IijSeil\%2fx86 Firmware1.00
IijSeil\%2fx86 Firmware2.80
IijSeil\%2fx86 Firmware2.81
IijSeil\%2fx86 Firmware2.82
IijSeil\%2fx86 Firmware3.10
IijSeil\/X86All versions
IijSeil\%2fx2 Firmware1.00
IijSeil\%2fx2 Firmware1.80
IijSeil\%2fx2 Firmware4.30
IijSeil\%2fx2 Firmware4.50
IijSeil\/X2All versions
IijSeil\%2fx1 Firmware1.00
IijSeil\%2fx1 Firmware4.30
IijSeil\%2fx1 Firmware4.31
IijSeil\%2fx1 Firmware4.32
IijSeil\/X1All versions
IijSeil\%2fb1 Firmware1.00
IijSeil\%2fb1 Firmware4.30
IijSeil\%2fb1 Firmware4.31
IijSeil\%2fb1 Firmware4.32
IijSeil\%2fb1 Firmware4.50
IijSeil\/B1All versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2014-2004?
The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 through 3.10, SEIL/X1 routers 1.00 through 4.50, SEIL/X2 routers 1.00 through 4.50, SEIL/B1 routers 1.00 through 4.50, SEIL/Turbo routers 1.80 through 2.17, and SEIL/neu 2FE Plus routers 1.80 through 2.17 allows remote attackers to cause a denial of service (session termination or concentrator outage) via a crafted TCP packet.
How severe is CVE-2014-2004?
Severity scoring for CVE-2014-2004 is pending analysis. The EPSS model estimates a 2.14% probability of exploitation in the next 30 days.
How do I fix CVE-2014-2004?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-2004?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST