CVE Vulnerabilities

CVE-2014-3404

Published: Oct 10, 2014 | Modified: Oct 10, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Autonomic Networking Infrastructure (ANI) component in Cisco IOS XE does not properly validate certificates, which allows remote attackers to trigger acceptance of an invalid message via crafted messages, aka Bug ID CSCuq22677.

Affected Software

Name Vendor Start Version End Version
Ios_xe Cisco - (including) - (including)

References