CVE-2014-3295
The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0083 (0.8%)
Percentile: 74.6%
EPSS: 2026-05-06
Affects
cisco:nx-osTechnical description
The HSRP implementation in Cisco NX-OS 6.2(2a) and earlier allows remote attackers to bypass authentication and cause a denial of service (group-member state modification and traffic blackholing) via malformed HSRP packets, aka Bug ID CSCup11309.
Published: 6/14/2014, 4:26:47 AM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://secunia.com/advisories/59158
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3295
- http://tools.cisco.com/security/center/viewAlert.x?alertId=34585
- http://www.securityfocus.com/bid/67983
- http://www.securitytracker.com/id/1030409
- http://secunia.com/advisories/59158
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3295
- http://tools.cisco.com/security/center/viewAlert.x?alertId=34585