VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 24, 2014· Updated May 6, 2026

CVE-2014-3322

CVE-2014-3322

Description

Cisco IOS XR 4.3(.2) and earlier on ASR 9000 suffers from a denial-of-service vulnerability via malformed IP packets due to improper NetFlow sampling.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco IOS XR 4.3(.2) and earlier on ASR 9000 suffers from a denial-of-service vulnerability via malformed IP packets due to improper NetFlow sampling.

Vulnerability

Cisco IOS XR versions 4.3(.2) and earlier on ASR 9000 series devices improperly handle NetFlow sampling of IP packets. A remote attacker can send malformed IPv4 or IPv6 packets to cause a denial of service (chip and card hangs). This bug is tracked as CSCuo68417 [2].

Exploitation

An attacker needs network access to send malformed IPv4 or IPv6 packets to the device. No authentication is required. The malformed packets trigger a flaw in the NetFlow sampling process, leading to hangs of the chip and line card.

Impact

Successful exploitation results in a denial-of-service condition, causing chip and card hangs, which can disrupt network services. The device may become unresponsive until reset.

Mitigation

Cisco has not released a fix as of the publication date (2014-07-24). Workarounds are not disclosed in available references. Affected users should monitor Cisco's security advisories for updates.

References
  1. Security Advisories

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

11

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.