1. Home
  2. CVE Database
  3. CVE-2014-7997
MEDIUM · 6.1

CVE-2014-7997

The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to caus...

Vulnerability Description

The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to cause a denial of service (device restart) by triggering a transition into a recovery state that was intended to involve a network-interface restart but actually involves a full device restart, aka Bug ID CSCtn16281.

CVSS Score

6.1

MEDIUM

AV:A/AC:L/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
CiscoIos-
CiscoAironet 1040-
CiscoAironet 1140-
CiscoAironet 1260-
CiscoAironet 3500-
CiscoAironet 3600-
CiscoAironet 3600E-
CiscoAironet 3600I-
CiscoAironet 3600P-
CiscoAironet 600 Office Extend-
CiscoAironet Ap1100All versions
CiscoAironet Ap1130AgAll versions
CiscoAironet Ap1131All versions
CiscoAironet Ap1200All versions
CiscoAironet Ap1230AgAll versions
CiscoAironet Ap1240All versions
CiscoAironet Ap1240AgAll versions
CiscoAironet Ap1300All versions
CiscoAironet Ap1400All versions
CiscoAironet Ap340All versions

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2014-7997?

CVE-2014-7997 is a vulnerability with a CVSS score of 6.1 (MEDIUM). The DHCP implementation in Cisco IOS on Aironet access points does not properly handle error conditions with short leases and unsuccessful lease-renewal attempts, which allows remote attackers to caus...

How severe is CVE-2014-7997?

CVE-2014-7997 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-7997?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Aironet 1040, Cisco Aironet 1140, Cisco Aironet 1260, Cisco Aironet 3500.