Описание
Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:cisco:ios_xr:4.3.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:4.3.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:4.3.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:4.3.3:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.1.2:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.0:*:*:*:*:*:*:*
cpe:2.3:o:cisco:ios_xr:5.2.1:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:cisco:asr_9001:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_9006:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_9010:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_9904:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_9912:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:asr_9922:-:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00851
Низкий
7.8 High
CVSS2
Дефекты
CWE-19
Связанные уязвимости
github
больше 3 лет назад
Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attackers to cause a denial of service (chip and card hangs and reloads) by triggering use of a BVI interface for IPv4 packets, aka Bug ID CSCur62957.
EPSS
Процентиль: 74%
0.00851
Низкий
7.8 High
CVSS2
Дефекты
CWE-19