CVE-2014-3276

CVE Database · CVE-2014-3276

CVE-2014-3276

· N/AModified

CVSS v3.1

N/A

EPSS

2.19%

Published

May 25, 2014

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cisco Identity Services Engine (ISE) 1.2(.1 patch 2) and earlier does not properly handle deadlock conditions during reception of crafted RADIUS accounting packets from multiple NAS devices, which allows remote authenticated users to cause a denial of service (RADIUS outage) by sourcing these packets from two origins, aka Bug ID CSCuo56780.

Weaknesses (CWE)

CWE-399

Affected Products (3)

cisco · identity_services_engine_softwarevulnerable

References (6)

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3276

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=34329

Vendor Advisory

http://www.securitytracker.com/id/1030274

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3276

Vendor Advisory

http://tools.cisco.com/security/center/viewAlert.x?alertId=34329

Vendor Advisory

http://www.securitytracker.com/id/1030274

Third Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs