CVE-2014-3018 — HIGH (7.8) — White Hats Nepal

Q: What is CVE-2014-3018?

CVE-2014-3018 is a vulnerability with a CVSS score of 7.8 (HIGH). IBM BladeCenter SAS Connectivity Module (aka NSSM) and SAS RAID Module (aka RSSM) before 1.3.3.006 allow remote attackers to cause a denial of service (reboot) via a flood of IP packets.

Q: How severe is CVE-2014-3018?

CVE-2014-3018 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2014-3018?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Sas Raid Module Firmware, Ibm Sas Raid Module, Ibm Sas Connectivity Module Firmware, Ibm Sas Connectivity Module.

Vulnerability Description

IBM BladeCenter SAS Connectivity Module (aka NSSM) and SAS RAID Module (aka RSSM) before 1.3.3.006 allow remote attackers to cause a denial of service (reboot) via a flood of IP packets.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Ibm	Sas Raid Module Firmware	<= 1.3.3.004
Ibm	Sas Raid Module	-
Ibm	Sas Connectivity Module Firmware	<= 1.3.3.004
Ibm	Sas Connectivity Module	-

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2014-3018?

CVE-2014-3018 is a vulnerability with a CVSS score of 7.8 (HIGH). IBM BladeCenter SAS Connectivity Module (aka NSSM) and SAS RAID Module (aka RSSM) before 1.3.3.006 allow remote attackers to cause a denial of service (reboot) via a flood of IP packets.

How severe is CVE-2014-3018?

CVE-2014-3018 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-3018?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Sas Raid Module Firmware, Ibm Sas Raid Module, Ibm Sas Connectivity Module Firmware, Ibm Sas Connectivity Module.