CVE-2021-1621
7.4
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Exploitability: 2.8 / Impact: 4.0
Source: NVD
Description
A vulnerability in the Layer 2 punt code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a queue wedge on an interface that receives specific Layer 2 frames, resulting in a denial of service (DoS) condition. This vulnerability is due to improper handling of certain Layer 2 frames. An attacker could exploit this vulnerability by sending specific Layer 2 frames on the segment the router is connected to. A successful exploit could allow the attacker to cause a queue wedge on the interface, resulting in a DoS condition.
Affected (1)
Configuration A
| Running on/with | Platform Versions |
|---|---|
Cisco 1000 Integrated Services Router | All versions |
Cisco 1100 4g/6g Integrated Services Router | All versions |
Cisco 1100 4p Integrated Services Router | All versions |
Cisco 1100 8p Integrated Services Router | All versions |
Cisco 1100 Integrated Services Router | All versions |
Cisco 1101 4p Integrated Services Router | All versions |
Cisco 1101 Integrated Services Router | All versions |
Cisco 1109 2p Integrated Services Router | All versions |
Cisco 1109 4p Integrated Services Router | All versions |
Cisco 1109 Integrated Services Router | All versions |
Cisco 1111x 8p Integrated Services Router | All versions |
Cisco 1111x Integrated Services Router | All versions |
Cisco 111x Integrated Services Router | All versions |
Cisco 1120 Integrated Services Router | All versions |
Cisco 1160 Integrated Services Router | All versions |
Configuration B
| Running on/with | Platform Versions |
|---|---|
Cisco 4000 Integrated Services Router | All versions |
Cisco 4221 Integrated Services Router | All versions |
Cisco 4321 Integrated Services Router | All versions |
Cisco 4331 Integrated Services Router | All versions |
Cisco 4351 Integrated Services Router | All versions |
Cisco 4431 Integrated Services Router | All versions |
Cisco 4451 X Integrated Services Router | All versions |
Cisco 4451 Integrated Services Router | All versions |
Cisco 4461 Integrated Services Router | All versions |
Configuration C
| Running on/with | Platform Versions |
|---|---|
Cisco Asr 1000 | All versions |
Cisco Asr 1000 X | All versions |
Cisco Asr 1001 | All versions |
Cisco Asr 1001 Hx | All versions |
Cisco Asr 1001 Hx R | All versions |
Cisco Asr 1001 X | All versions |
Cisco Asr 1001 X R | All versions |
Cisco Asr 1002 | All versions |
Cisco Asr 1002 Hx | All versions |
Cisco Asr 1002 Hx R | All versions |
Cisco Asr 1002 X | All versions |
Cisco Asr 1002 X R | All versions |
Cisco Asr 1004 | All versions |
Cisco Asr 1006 | All versions |
Cisco Asr 1006 X | All versions |
Cisco Asr 1009 X | All versions |
Cisco Asr 1013 | All versions |
Cisco Asr 1023 | All versions |
Configuration D
| Running on/with | Platform Versions |
|---|---|
Cisco Csr 1000v | All versions |
Related CWEs
References (2)
Source: psirt@cisco.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.