CVE-2014-7999

High CVSS 7.7

Overview

Cisco-Meraki MS, MR, and MX devices with firmware before 2014-09-24 allow remote authenticated users to install arbitrary firmware by leveraging unspecified HTTP handler access on the local network, aka Cisco-Meraki defect ID 00478565.

CWE: CWE-264 Published: 2014-12-24T00:59:03.343

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 7.7 (HIGH)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags