VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 10, 2014· Updated May 6, 2026

CVE-2014-3387

CVE-2014-3387

Description

Cisco ASA SunRPC inspection engine DoS via crafted packets leads to device reload; affects multiple versions.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco ASA SunRPC inspection engine DoS via crafted packets leads to device reload; affects multiple versions.

Vulnerability

The SunRPC inspection engine in Cisco ASA Software versions 7.2 before 7.2(5.14), 8.2 before 8.2(5.51), 8.3 before 8.3(2.42), 8.4 before 8.4(7.23), 8.5 before 8.5(1.21), 8.6 before 8.6(1.14), 8.7 before 8.7(1.13), 9.0 before 9.0(4.5), and 9.1 before 9.1(5.3) is vulnerable to a denial of service condition. The bug is triggered when the engine processes specially crafted SunRPC packets [1].

Exploitation

An unauthenticated remote attacker can exploit this vulnerability by sending a series of crafted SunRPC packets to an affected Cisco ASA device. No special network position or authentication is required; the attacker only needs network access to the device [1].

Impact

Successful exploitation causes the device to reload, resulting in a denial of service (DoS). No data disclosure or privilege escalation is achieved; the impact is limited to service disruption [1].

Mitigation

Cisco has released fixed software versions as listed in the advisory [1]. Administrators should upgrade to the appropriate fixed version: 7.2(5.14), 8.2(5.51), 8.3(2.42), 8.4(7.23), 8.5(1.21), 8.6(1.14), 8.7(1.13), 9.0(4.5), or 9.1(5.3) or later. No workaround is available; the only mitigation is to apply the software update.

References
  1. Cisco Security Advisory: Multiple Vulnerabilities in Cisco ASA Software

AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

28
  • Cisco Systems, Inc./Cisco Adaptive Security Appliance27 versions
    cpe:2.3:a:cisco:asa:7.2.5:*:*:*:*:*:*:*+ 26 more
    • cpe:2.3:a:cisco:asa:7.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:7.2.5.10:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.13:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.22:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.26:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.33:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.41:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.46:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.48:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.2.5.49:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.3.2.25:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.2:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.3:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.4.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.5:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.5.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.6:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:8.7:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cisco:asa:9.1:*:*:*:*:*:*:*
  • Cisco Systems, Inc./ASA Softwarellm-fuzzy
    Range: 7.2 < 7.2(5.14), 8.2 < 8.2(5.51), 8.3 < 8.3(2.42), 8.4 < 8.4(7.23), 8.5 < 8.5(1.21), 8.6 < 8.6(1.14), 8.7 < 8.7(1.13), 9.0 < 9.0(4.5), 9.1 < 9.1(5.3)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.