CVE-2024-20406
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Summary
A vulnerability in the segment routing feature for the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
This vulnerability is due to insufficient input validation of ingress IS-IS packets. An attacker could exploit this vulnerability by sending specific IS-IS packets to an affected device after forming an adjacency. A successful exploit could allow the attacker to cause the IS-IS process on all affected devices that are participating in the Flexible Algorithm to crash and restart, resulting in a DoS condition. Note: The IS-IS protocol is a routing protocol. To exploit this vulnerability, an attacker must be Layer 2-adjacent to the affected device and must have formed an adjacency. This vulnerability affects segment routing for IS-IS over IPv4 and IPv6 control planes as well as devices that are configured as level 1, level 2, or multi-level routing IS-IS type.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cisco | Cisco IOS XR Software | 7.4.1 | affected |
| Cisco | Cisco IOS XR Software | 6.8.1 | affected |
| Cisco | Cisco IOS XR Software | 7.4.15 | affected |
| Cisco | Cisco IOS XR Software | 7.5.1 | affected |
| Cisco | Cisco IOS XR Software | 7.4.16 | affected |
| Cisco | Cisco IOS XR Software | 7.6.1 | affected |
| Cisco | Cisco IOS XR Software | 7.5.2 | affected |
| Cisco | Cisco IOS XR Software | 7.8.1 | affected |
| Cisco | Cisco IOS XR Software | 7.6.15 | affected |
| Cisco | Cisco IOS XR Software | 7.5.12 | affected |
| Cisco | Cisco IOS XR Software | 7.7.1 | affected |
| Cisco | Cisco IOS XR Software | 6.8.2 | affected |
| Cisco | Cisco IOS XR Software | 7.4.2 | affected |
| Cisco | Cisco IOS XR Software | 6.9.1 | affected |
| Cisco | Cisco IOS XR Software | 7.6.2 | affected |
| Cisco | Cisco IOS XR Software | 7.5.3 | affected |
| Cisco | Cisco IOS XR Software | 7.7.2 | affected |
| Cisco | Cisco IOS XR Software | 6.9.2 | affected |
| Cisco | Cisco IOS XR Software | 7.9.1 | affected |
| Cisco | Cisco IOS XR Software | 7.10.1 | affected |
| Cisco | Cisco IOS XR Software | 7.8.2 | affected |
| Cisco | Cisco IOS XR Software | 7.5.4 | affected |
| Cisco | Cisco IOS XR Software | 7.8.22 | affected |
| Cisco | Cisco IOS XR Software | 7.7.21 | affected |
| Cisco | Cisco IOS XR Software | 7.9.2 | affected |
| Cisco | Cisco IOS XR Software | 7.5.5 | affected |
| Cisco | Cisco IOS XR Software | 7.11.1 | affected |
| Cisco | Cisco IOS XR Software | 7.9.21 | affected |
| Cisco | Cisco IOS XR Software | 7.10.2 | affected |
| Cisco | Cisco IOS XR Software | 7.6.3 | affected |
Weaknesses
- CWE-20: Improper Input Validation
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-isis-xehpbVNe
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.