Critical severity9.8NVD Advisory· Published Jun 12, 2017· Updated May 13, 2026

CVE-2014-9984

Description

nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as the user running nscd.

Affected products

GNU/Glibc
cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*
Range: <=2.19

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/153278/WAGO-852-Industrial-Managed-Switch-Series-Code-Execution-Hardcoded-Credentials.htmlnvd
packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.htmlnvd
seclists.org/fulldisclosure/2019/Jun/18nvd
seclists.org/fulldisclosure/2019/Sep/7nvd
www.securityfocus.com/bid/99071nvd
seclists.org/bugtraq/2019/Jun/14nvd
seclists.org/bugtraq/2019/Sep/7nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000