Vulnerability Description
The DHCP client implementation in Universal Small Cell firmware on Cisco Small Cell products allows remote attackers to execute arbitrary commands via crafted DHCP messages, aka Bug ID CSCup47513.
CVSS Score
6.8
MEDIUM
AV:A/AC:H/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Universal Small Cell Series Firmware | - |
References
- http://secunia.com/advisories/59024
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3307Vendor Advisory
- http://www.securityfocus.com/bid/68307
- http://www.securitytracker.com/id/1030509
- http://secunia.com/advisories/59024
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3307Vendor Advisory
- http://www.securityfocus.com/bid/68307
- http://www.securitytracker.com/id/1030509
FAQ
What is CVE-2014-3307?
CVE-2014-3307 is a vulnerability with a CVSS score of 6.8 (MEDIUM). The DHCP client implementation in Universal Small Cell firmware on Cisco Small Cell products allows remote attackers to execute arbitrary commands via crafted DHCP messages, aka Bug ID CSCup47513.
How severe is CVE-2014-3307?
CVE-2014-3307 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3307?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Universal Small Cell Series Firmware.