Unrated severityNVD Advisory· Published Aug 26, 2014· Updated May 6, 2026

CVE-2014-3335

Description

Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC addresses, which allows remote attackers to cause a denial of service (chip and card hangs) via a crafted packet, aka Bug ID CSCup77750.

Affected products

Cisco Systems, Inc./Asr 9000 Rsp440 Router
cpe:2.3:h:cisco:asr_9000_rsp440_router:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9001
cpe:2.3:h:cisco:asr_9001:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9006
cpe:2.3:h:cisco:asr_9006:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9010
cpe:2.3:h:cisco:asr_9010:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9904
cpe:2.3:h:cisco:asr_9904:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9912
cpe:2.3:h:cisco:asr_9912:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Asr 9922
cpe:2.3:h:cisco:asr_9922:-:*:*:*:*:*:*:*
Cisco Systems, Inc./iOS Xr3 versions
cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*range: <=4.3.2
- cpe:2.3:o:cisco:ios_xr:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xr:4.3.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3335nvdVendor Advisory
tools.cisco.com/security/center/viewAlert.xnvdVendor Advisory
secunia.com/advisories/60222nvd
www.securityfocus.com/bid/69383nvd
www.securitytracker.com/id/1030757nvd
exchange.xforce.ibmcloud.com/vulnerabilities/95443nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000