VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 10, 2014· Updated May 6, 2026

CVE-2014-3382

CVE-2014-3382

Description

Crafted SQL REDIRECT packets cause a denial of service (device reload) in Cisco ASA with SQL*Net inspection enabled.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Crafted SQL REDIRECT packets cause a denial of service (device reload) in Cisco ASA with SQL*Net inspection enabled.

Vulnerability

The SQL*Net inspection engine in Cisco ASA Software is vulnerable to a denial of service via crafted SQL REDIRECT packets. The vulnerability affects versions 7.2 before 7.2(5.13), 8.2 before 8.2(5.50), 8.3 before 8.3(2.42), 8.4 before 8.4(7.15), 8.5 before 8.5(1.21), 8.6 before 8.6(1.14), 8.7 before 8.7(1.13), 9.0 before 9.0(4.5), and 9.1 before 9.1(5.1). SQL*Net inspection is enabled by default, making many devices potentially vulnerable. [1]

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending specially crafted SQL REDIRECT packets to an affected Cisco ASA device. No prior authentication or special network position is required; the attacker only needs network access to the device. [1]

Impact

Successful exploitation causes the affected Cisco ASA device to reload, resulting in a denial of service (DoS). This disrupts all traffic passing through the device until it completes the reload process. [1]

Mitigation

Cisco has released software updates that address this vulnerability. Administrators should upgrade to the fixed versions listed in the advisory. As a workaround, if SQL*Net inspection is not required, it can be disabled using the no inspect sqlnet command in the global service policy. [1]

References
  1. Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

28
  • Cisco Systems, Inc./Cisco Adaptive Security Appliance27 versions
    cpe:2.3:a:cisco:asa:7.2.5:*:*:*:*:*:*:*+ 26 more
    • cpe:2.3:a:cisco:asa:7.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:7.2.5.10:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.13:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.22:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.26:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.33:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.41:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.46:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.48:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.49:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.3.2.25:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.5.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:9.1:*:*:*:*:*:*:*
  • Cisco Systems, Inc./ASA Softwarellm-fuzzy
    Range: multiple versions before specified releases

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.