VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 10, 2014· Updated May 6, 2026

CVE-2014-3343

CVE-2014-3343

Description

Cisco IOS XR 5.1 is vulnerable to a denial-of-service via malformed DHCPv6 packet, causing a dhcpv6 daemon crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco IOS XR 5.1 is vulnerable to a denial-of-service via malformed DHCPv6 packet, causing a dhcpv6 daemon crash.

Vulnerability

Cisco IOS XR version 5.1 contains a vulnerability in the DHCPv6 daemon that allows a remote, unauthenticated attacker to cause a denial of service (DoS) by sending a malformed DHCPv6 packet. The issue is identified by Cisco bug ID CSCuo59052 and is documented in reference [2].

Exploitation

An attacker can exploit this vulnerability by sending a specially crafted, malformed DHCPv6 packet to a device running Cisco IOS XR 5.1. No authentication or prior access is required; the attack is performed over the network [2].

Impact

Successful exploitation causes the DHCPv6 daemon on the targeted device to crash, resulting in a denial of service condition that disrupts DHCPv6 services. The device itself may continue to operate, but DHCPv6 functionality is lost [2].

Mitigation

As of the publication date (September 10, 2014), Cisco has not released a fixed version. Administrators are advised to monitor Cisco Security Advisories for updates. No workaround is documented in the available references [2][3].

References
  1. Security Advisories
  2. Announcement Regarding Non-Cisco Product Security Alerts

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Cisco Systems, Inc./iOS Xr2 versions
    cpe:2.3:o:cisco:ios_xr:5.1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:cisco:ios_xr:5.1.0:*:*:*:*:*:*:*
    • (no CPE)range: =5.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.