← Back

CVE-2014-7999

nvd nist
Published: Dec 24, 2014Modified: May 6, 2026

JSON object

Loading...
7.7
Vector
AV:A/AC:L/Au:S/C:C/I:C/A:C
Exploitability: 5.1 / Impact: 10.0
Source: NVD

Description

Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24 allow remote authenticated users to install arbitrary firmware by leveraging unspecified HTTP handler access on the local network, aka Cisco-Meraki defect ID 00478565.

Affected (6)

Cisco
6 products
Meraki Mr Firmware
Meraki Mr
Meraki Ms Firmware
Meraki Ms
Meraki Mx Firmware
Meraki Mx
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Meraki Mr Firmware
Up to 2014-09-24
Meraki Mr
All versions
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Meraki Ms Firmware
Up to 2014-09-24
Meraki Ms
All versions
Configuration C
2 vulnerable
Vulnerable SoftwareAffected Versions
Meraki Mx Firmware
Up to 2014-09-24
Meraki Mx
All versions

Related CWEs

CWE-264
CWE-264

References (4)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.