CVE-2023-20227

Published: Sep 27, 2023Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A vulnerability in the Layer 2 Tunneling Protocol (L2TP) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain L2TP packets. An attacker could exploit this vulnerability by sending crafted L2TP packets to an affected device. A successful exploit could allow the attacker to cause the device to reload unexpectedly, resulting in a DoS condition. Note: Only traffic directed to the affected system can be used to exploit this vulnerability.

Affected (96)

Products: Cisco: Ios Xe

Cisco

1 product

Ios Xe

Configuration A

96 vulnerable · 40 platform

Vulnerable Software	Affected Versions
Cisco Ios Xe	Version 16.10.1
Cisco Ios Xe	Version 16.10.1a
Cisco Ios Xe	Version 16.10.1b
Cisco Ios Xe	Version 16.10.1c
Cisco Ios Xe	Version 16.10.1d
Cisco Ios Xe	Version 16.10.1e
Cisco Ios Xe	Version 16.10.1f
Cisco Ios Xe	Version 16.10.1g
Cisco Ios Xe	Version 16.10.1s
Cisco Ios Xe	Version 16.10.2
Cisco Ios Xe	Version 16.10.3
Cisco Ios Xe	Version 16.11.1
Cisco Ios Xe	Version 16.11.1a
Cisco Ios Xe	Version 16.11.1b
Cisco Ios Xe	Version 16.11.1s
Cisco Ios Xe	Version 16.11.2
Cisco Ios Xe	Version 16.12.1
Cisco Ios Xe	Version 16.12.1a
Cisco Ios Xe	Version 16.12.1c
Cisco Ios Xe	Version 16.12.1s
Cisco Ios Xe	Version 16.12.1t
Cisco Ios Xe	Version 16.12.1w
Cisco Ios Xe	Version 16.12.1x
Cisco Ios Xe	Version 16.12.1y
Cisco Ios Xe	Version 16.12.1z1
Cisco Ios Xe	Version 16.12.1z2
Cisco Ios Xe	Version 16.12.2
Cisco Ios Xe	Version 16.12.2a
Cisco Ios Xe	Version 16.12.2s
Cisco Ios Xe	Version 16.12.3
Cisco Ios Xe	Version 16.12.3s
Cisco Ios Xe	Version 16.12.4
Cisco Ios Xe	Version 16.12.4a
Cisco Ios Xe	Version 16.12.5
Cisco Ios Xe	Version 16.12.5a
Cisco Ios Xe	Version 16.12.6
Cisco Ios Xe	Version 16.12.6a
Cisco Ios Xe	Version 16.12.7
Cisco Ios Xe	Version 16.12.8
Cisco Ios Xe	Version 16.8.1
Cisco Ios Xe	Version 16.8.1a
Cisco Ios Xe	Version 16.8.1b
Cisco Ios Xe	Version 16.8.1c
Cisco Ios Xe	Version 16.8.1d
Cisco Ios Xe	Version 16.8.1e
Cisco Ios Xe	Version 16.8.1s
Cisco Ios Xe	Version 16.8.2
Cisco Ios Xe	Version 16.8.3
Cisco Ios Xe	Version 16.9.1
Cisco Ios Xe	Version 16.9.1a
Cisco Ios Xe	Version 16.9.1b
Cisco Ios Xe	Version 16.9.1s
Cisco Ios Xe	Version 16.9.2
Cisco Ios Xe	Version 16.9.3
Cisco Ios Xe	Version 16.9.4
Cisco Ios Xe	Version 16.9.5
Cisco Ios Xe	Version 16.9.5f
Cisco Ios Xe	Version 16.9.6
Cisco Ios Xe	Version 16.9.7
Cisco Ios Xe	Version 16.9.8
Cisco Ios Xe	Version 17.1.1
Cisco Ios Xe	Version 17.1.1a
Cisco Ios Xe	Version 17.1.1s
Cisco Ios Xe	Version 17.1.1t
Cisco Ios Xe	Version 17.1.3
Cisco Ios Xe	Version 17.2.1
Cisco Ios Xe	Version 17.2.1a
Cisco Ios Xe	Version 17.2.1r
Cisco Ios Xe	Version 17.2.1v
Cisco Ios Xe	Version 17.2.2
Cisco Ios Xe	Version 17.2.3
Cisco Ios Xe	Version 17.3.1
Cisco Ios Xe	Version 17.3.1a
Cisco Ios Xe	Version 17.3.1w
Cisco Ios Xe	Version 17.3.1x
Cisco Ios Xe	Version 17.3.1z
Cisco Ios Xe	Version 17.3.2
Cisco Ios Xe	Version 17.3.2a
Cisco Ios Xe	Version 17.3.3
Cisco Ios Xe	Version 17.3.4
Cisco Ios Xe	Version 17.3.4a
Cisco Ios Xe	Version 17.3.4c
Cisco Ios Xe	Version 17.3.5
Cisco Ios Xe	Version 17.3.5a
Cisco Ios Xe	Version 17.3.5b
Cisco Ios Xe	Version 17.3.6
Cisco Ios Xe	Version 17.3.7
Cisco Ios Xe	Version 17.4.1
Cisco Ios Xe	Version 17.4.1a
Cisco Ios Xe	Version 17.4.1b
Cisco Ios Xe	Version 17.4.2
Cisco Ios Xe	Version 17.4.2a
Cisco Ios Xe	Version 17.5.1
Cisco Ios Xe	Version 17.5.1a
Cisco Ios Xe	Version 17.5.1b
Cisco Ios Xe	Version 17.5.1c

Running on/with	Platform Versions
Cisco 1000 Integrated Services Router	All versions
Cisco 1100 4g Integrated Services Router	All versions
Cisco 1100 4gltegb Integrated Services Router	All versions
Cisco 1100 4gltena Integrated Services Router	All versions
Cisco 1100 6g Integrated Services Router	All versions
Cisco 4221 Integrated Services Router	All versions
Cisco 4321/k9 Rf Integrated Services Router	All versions
Cisco 4321/k9 Ws Integrated Services Router	All versions
Cisco 4321/k9 Integrated Services Router	All versions
Cisco 4321 Integrated Services Router	All versions
Cisco 4331/k9 Rf Integrated Services Router	All versions
Cisco 4331/k9 Ws Integrated Services Router	All versions
Cisco 4331/k9 Integrated Services Router	All versions
Cisco 4331 Integrated Services Router	All versions
Cisco 4351/k9 Rf Integrated Services Router	All versions
Cisco 4351/k9 Ws Integrated Services Router	All versions
Cisco 4351/k9 Integrated Services Router	All versions
Cisco 4351 Integrated Services Router	All versions
Cisco 4431 Integrated Services Router	All versions
Cisco 4451 Integrated Services Router	All versions
Cisco 4461 Integrated Services Router	All versions
Cisco C8200 1n 4t	All versions
Cisco C8200l 1n 4t	All versions
Cisco C8500l 8s4x	All versions
Cisco Catalyst 8000v Edge	All versions
Cisco Catalyst 8300 1n1s 4t2x	All versions
Cisco Catalyst 8300 1n1s 6t	All versions
Cisco Catalyst 8300 2n2s 4t2x	All versions
Cisco Catalyst 8300 2n2s 6t	All versions
Cisco Cloud Services Router 1000v	All versions
Cisco Vg400 2fxs/2fxo	All versions
Cisco Vg400 4fxs/4fxo	All versions
Cisco Vg400 6fxs/6fxo	All versions
Cisco Vg400 8fxs	All versions
Cisco Vg420 132fxs/6fxo	All versions
Cisco Vg420 144fxs	All versions
Cisco Vg420 84fxs/6fxo	All versions
Cisco Vg450 144fxs/k9	All versions
Cisco Vg450 72fxs/k9	All versions
Cisco Vg450/k9	All versions

Related CWEs

CWE-388

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-l2tp-dos-eB5tuFmV

Source: psirt@cisco.com

MitigationVendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-xe-l2tp-dos-eB5tuFmV

Source: af854a3a-2127-422b-91ae-364da2661108

MitigationVendor Advisory

Timeline

No history available yet.