BDU:2024-02634

Опубликовано: 27 мар. 2024

Источник: fstec

CVSS3: 7.4

CVSS2: 6.1

EPSS Низкий

Описание

Уязвимость функции multicast DNS (mDNS) gateway операционных систем Cisco IOS XE беспроводных контроллеров Catalyst серии 9800 связана с неполной очисткой временных или вспомогательных ресурсов при обработке записей клиента mDNS. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании путем отправки специально сформированных пакетов mDNS

Вендор

Cisco Systems Inc.

Наименование ПО

Cisco IOS XE

Версия ПО

17.3.1 (Cisco IOS XE)

17.3.2 (Cisco IOS XE)

17.3.2a (Cisco IOS XE)

17.4.1 (Cisco IOS XE)

17.5.1 (Cisco IOS XE)

17.3.4c (Cisco IOS XE)

17.10.1 (Cisco IOS XE)

17.10.1a (Cisco IOS XE)

17.10.1b (Cisco IOS XE)

17.9.1 (Cisco IOS XE)

17.9.1w (Cisco IOS XE)

17.9.2 (Cisco IOS XE)

17.9.1a (Cisco IOS XE)

17.9.1x (Cisco IOS XE)

17.9.1y (Cisco IOS XE)

17.9.2a (Cisco IOS XE)

17.9.1x1 (Cisco IOS XE)

17.2 (Cisco IOS XE)

17.2.1 (Cisco IOS XE)

17.2.1r (Cisco IOS XE)

17.2.1a (Cisco IOS XE)

17.2.1v (Cisco IOS XE)

17.2.2 (Cisco IOS XE)

17.2.3 (Cisco IOS XE)

17.3 (Cisco IOS XE)

17.3.1 (Cisco IOS XE)

17.3.2 (Cisco IOS XE)

17.3.3 (Cisco IOS XE)

17.3.1a (Cisco IOS XE)

17.3.1w (Cisco IOS XE)

17.3.2a (Cisco IOS XE)

17.3.1x (Cisco IOS XE)

17.3.1z (Cisco IOS XE)

17.3.3a (Cisco IOS XE)

17.3.4 (Cisco IOS XE)

17.3.5 (Cisco IOS XE)

17.3.4a (Cisco IOS XE)

17.3.6 (Cisco IOS XE)

17.3.4b (Cisco IOS XE)

17.3.4c (Cisco IOS XE)

17.3.5a (Cisco IOS XE)

17.3.5b (Cisco IOS XE)

17.3.7 (Cisco IOS XE)

17.3.8 (Cisco IOS XE)

17.3.8a (Cisco IOS XE)

17.4 (Cisco IOS XE)

17.4.1 (Cisco IOS XE)

17.4.2 (Cisco IOS XE)

17.4.1a (Cisco IOS XE)

17.4.1b (Cisco IOS XE)

17.4.1c (Cisco IOS XE)

17.4.2a (Cisco IOS XE)

17.11SW (Cisco IOS XE)

17.11.99SW (Cisco IOS XE)

17.11 (Cisco IOS XE)

17.11.1 (Cisco IOS XE)

17.11.1a (Cisco IOS XE)

17.10 (Cisco IOS XE)

17.10.1 (Cisco IOS XE)

17.10.1a (Cisco IOS XE)

17.10.1b (Cisco IOS XE)

17.8 (Cisco IOS XE)

17.8.1 (Cisco IOS XE)

17.8.1a (Cisco IOS XE)

17.5 (Cisco IOS XE)

17.5.1 (Cisco IOS XE)

17.5.1a (Cisco IOS XE)

17.5.1b (Cisco IOS XE)

17.5.1c (Cisco IOS XE)

17.6 (Cisco IOS XE)

17.6.1 (Cisco IOS XE)

17.6.2 (Cisco IOS XE)

17.6.1w (Cisco IOS XE)

17.6.1a (Cisco IOS XE)

17.6.1x (Cisco IOS XE)

17.6.3 (Cisco IOS XE)

17.6.1y (Cisco IOS XE)

17.6.1z (Cisco IOS XE)

17.6.3a (Cisco IOS XE)

17.6.4 (Cisco IOS XE)

17.6.1z1 (Cisco IOS XE)

17.6.5 (Cisco IOS XE)

17.6.5a (Cisco IOS XE)

17.7 (Cisco IOS XE)

17.7.1 (Cisco IOS XE)

17.7.1a (Cisco IOS XE)

17.7.1b (Cisco IOS XE)

17.7.2 (Cisco IOS XE)

17.9.1y1 (Cisco IOS XE)

17.9.3a (Cisco IOS XE)

17.9.1x1 (Cisco IOS XE)

17.9.2a (Cisco IOS XE)

17.9.3 (Cisco IOS XE)

17.9.1y (Cisco IOS XE)

17.9.1x (Cisco IOS XE)

17.9.1a (Cisco IOS XE)

17.9.2 (Cisco IOS XE)

17.9.1w (Cisco IOS XE)

17.9.1 (Cisco IOS XE)

17.9 (Cisco IOS XE)

Тип ПО

Операционная система

Операционные системы и аппаратные платформы

Cisco Systems Inc. Cisco IOS XE 17.3.1

Cisco Systems Inc. Cisco IOS XE 17.3.2

Cisco Systems Inc. Cisco IOS XE 17.3.2a

Cisco Systems Inc. Cisco IOS XE 17.4.1

Cisco Systems Inc. Cisco IOS XE 17.5.1

Cisco Systems Inc. Cisco IOS XE 17.3.4c

Cisco Systems Inc. Cisco IOS XE 17.10.1

Cisco Systems Inc. Cisco IOS XE 17.10.1a

Cisco Systems Inc. Cisco IOS XE 17.10.1b

Cisco Systems Inc. Cisco IOS XE 17.9.1

Cisco Systems Inc. Cisco IOS XE 17.9.1w

Cisco Systems Inc. Cisco IOS XE 17.9.2

Cisco Systems Inc. Cisco IOS XE 17.9.1a

Cisco Systems Inc. Cisco IOS XE 17.9.1x

Cisco Systems Inc. Cisco IOS XE 17.9.1y

Cisco Systems Inc. Cisco IOS XE 17.9.2a

Cisco Systems Inc. Cisco IOS XE 17.9.1x1

Cisco Systems Inc. Cisco IOS XE 17.2

Cisco Systems Inc. Cisco IOS XE 17.2.1

Cisco Systems Inc. Cisco IOS XE 17.2.1r

Cisco Systems Inc. Cisco IOS XE 17.2.1a

Cisco Systems Inc. Cisco IOS XE 17.2.1v

Cisco Systems Inc. Cisco IOS XE 17.2.2

Cisco Systems Inc. Cisco IOS XE 17.2.3

Cisco Systems Inc. Cisco IOS XE 17.3

Cisco Systems Inc. Cisco IOS XE 17.3.1

Cisco Systems Inc. Cisco IOS XE 17.3.2

Cisco Systems Inc. Cisco IOS XE 17.3.3

Cisco Systems Inc. Cisco IOS XE 17.3.1a

Cisco Systems Inc. Cisco IOS XE 17.3.1w

Cisco Systems Inc. Cisco IOS XE 17.3.2a

Cisco Systems Inc. Cisco IOS XE 17.3.1x

Cisco Systems Inc. Cisco IOS XE 17.3.1z

Cisco Systems Inc. Cisco IOS XE 17.3.3a

Cisco Systems Inc. Cisco IOS XE 17.3.4

Cisco Systems Inc. Cisco IOS XE 17.3.5

Cisco Systems Inc. Cisco IOS XE 17.3.4a

Cisco Systems Inc. Cisco IOS XE 17.3.6

Cisco Systems Inc. Cisco IOS XE 17.3.4b

Cisco Systems Inc. Cisco IOS XE 17.3.4c

Cisco Systems Inc. Cisco IOS XE 17.3.5a

Cisco Systems Inc. Cisco IOS XE 17.3.5b

Cisco Systems Inc. Cisco IOS XE 17.3.7

Cisco Systems Inc. Cisco IOS XE 17.3.8

Cisco Systems Inc. Cisco IOS XE 17.3.8a

Cisco Systems Inc. Cisco IOS XE 17.4

Cisco Systems Inc. Cisco IOS XE 17.4.1

Cisco Systems Inc. Cisco IOS XE 17.4.2

Cisco Systems Inc. Cisco IOS XE 17.4.1a

Cisco Systems Inc. Cisco IOS XE 17.4.1b

Cisco Systems Inc. Cisco IOS XE 17.4.1c

Cisco Systems Inc. Cisco IOS XE 17.4.2a

Cisco Systems Inc. Cisco IOS XE 17.11SW

Cisco Systems Inc. Cisco IOS XE 17.11.99SW

Cisco Systems Inc. Cisco IOS XE 17.11

Cisco Systems Inc. Cisco IOS XE 17.11.1

Cisco Systems Inc. Cisco IOS XE 17.11.1a

Cisco Systems Inc. Cisco IOS XE 17.10

Cisco Systems Inc. Cisco IOS XE 17.10.1

Cisco Systems Inc. Cisco IOS XE 17.10.1a

Cisco Systems Inc. Cisco IOS XE 17.10.1b

Cisco Systems Inc. Cisco IOS XE 17.8

Cisco Systems Inc. Cisco IOS XE 17.8.1

Cisco Systems Inc. Cisco IOS XE 17.8.1a

Cisco Systems Inc. Cisco IOS XE 17.5

Cisco Systems Inc. Cisco IOS XE 17.5.1

Cisco Systems Inc. Cisco IOS XE 17.5.1a

Cisco Systems Inc. Cisco IOS XE 17.5.1b

Cisco Systems Inc. Cisco IOS XE 17.5.1c

Cisco Systems Inc. Cisco IOS XE 17.6

Cisco Systems Inc. Cisco IOS XE 17.6.1

Cisco Systems Inc. Cisco IOS XE 17.6.2

Cisco Systems Inc. Cisco IOS XE 17.6.1w

Cisco Systems Inc. Cisco IOS XE 17.6.1a

Cisco Systems Inc. Cisco IOS XE 17.6.1x

Cisco Systems Inc. Cisco IOS XE 17.6.3

Cisco Systems Inc. Cisco IOS XE 17.6.1y

Cisco Systems Inc. Cisco IOS XE 17.6.1z

Cisco Systems Inc. Cisco IOS XE 17.6.3a

Cisco Systems Inc. Cisco IOS XE 17.6.4

Cisco Systems Inc. Cisco IOS XE 17.6.1z1

Cisco Systems Inc. Cisco IOS XE 17.6.5

Cisco Systems Inc. Cisco IOS XE 17.6.5a

Cisco Systems Inc. Cisco IOS XE 17.7

Cisco Systems Inc. Cisco IOS XE 17.7.1

Cisco Systems Inc. Cisco IOS XE 17.7.1a

Cisco Systems Inc. Cisco IOS XE 17.7.1b

Cisco Systems Inc. Cisco IOS XE 17.7.2

Cisco Systems Inc. Cisco IOS XE 17.9.1y1

Cisco Systems Inc. Cisco IOS XE 17.9.3a

Cisco Systems Inc. Cisco IOS XE 17.9.1x1

Cisco Systems Inc. Cisco IOS XE 17.9.2a

Cisco Systems Inc. Cisco IOS XE 17.9.3

Cisco Systems Inc. Cisco IOS XE 17.9.1y

Cisco Systems Inc. Cisco IOS XE 17.9.1x

Cisco Systems Inc. Cisco IOS XE 17.9.1a

Cisco Systems Inc. Cisco IOS XE 17.9.2

Cisco Systems Inc. Cisco IOS XE 17.9.1w

Cisco Systems Inc. Cisco IOS XE 17.9.1

Cisco Systems Inc. Cisco IOS XE 17.9

Уровень опасности уязвимости

Средний уровень опасности (базовая оценка CVSS 2.0 составляет 6,1)

Высокий уровень опасности (базовая оценка CVSS 3.0 составляет 7,4)

Возможные меры по устранению уязвимости

Использование рекомендаций:

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-mdns-dos-4hv6pBGf

Статус уязвимости

Подтверждена производителем

Наличие эксплойта

Данные уточняются

Информация об устранении

Уязвимость устранена

Ссылки на источники

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-mdns-dos-4hv6pBGf

Идентификаторы других систем описаний уязвимостей

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-20303
CVE

EPSS

Процентиль: 23%

0.00077

Низкий

7.4 High

CVSS3

6.1 Medium

CVSS2

Связанные уязвимости

CVE-2024-20303

CVSS3: 7.4

nvd

почти 2 года назад

A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. This vulnerability is due to improper management of mDNS client entries. An attacker could exploit this vulnerability by connecting to the wireless network and sending a continuous stream of specific mDNS packets. A successful exploit could allow the attacker to cause the wireless controller to have high CPU utilization, which could lead to access points (APs) losing their connection to the controller and result in a DoS condition.

GHSA-jfv4-r4r3-xx7w

CVSS3: 7.4

github

почти 2 года назад

EPSS

Процентиль: 23%

0.00077

Низкий

7.4 High

CVSS3

6.1 Medium

CVSS2