CVE-2014-3348
Last modified
CVE-2014-3348 is a vulnerability of currently unknown severity. The SSH module in the Integrated Management Controller (IMC) before 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote attackers to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.. EPSS estimates a 2.58% chance of exploitation in the next 30 days.
Description
The SSH module in the Integrated Management Controller (IMC) before 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote attackers to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Integrated Management Controller | <= 2.2.2 |
| Cisco | Unified Computing System E140d | All versions |
| Cisco | Unified Computing System E140dp | All versions |
| Cisco | Unified Computing System E140s M1 | All versions |
| Cisco | Unified Computing System E140s M2 | All versions |
| Cisco | Unified Computing System E160d | All versions |
| Cisco | Unified Computing System E160dp | All versions |
| Cisco | Unified Computing System En120s M2 | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-3348?
How severe is CVE-2014-3348?
How do I fix CVE-2014-3348?
Are you affected by CVE-2014-3348?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST