CVE-2024-20304

Published: Sep 11, 2024Modified: Oct 3, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle packet memory. An attacker could exploit this vulnerability by sending crafted packets to an affected device. A successful exploit could allow the attacker to exhaust the incoming UDP packet memory. The affected device would not be able to process higher-level UDP-based protocols packets, possibly causing a denial of service (DoS) condition. Note: This vulnerability can be exploited using IPv4 or IPv6.

Affected (18)

Products: Cisco: Ios Xr

Cisco

1 product

Ios Xr

Configuration A

18 vulnerable

Vulnerable Software	Affected Versions
Cisco Ios Xr	Version 24.1.1
Cisco Ios Xr	Version 24.1.2
Cisco Ios Xr	Version 24.2.11
Cisco Ios Xr	Version 24.2.1
Cisco Ios Xr	Version 7.10.1
Cisco Ios Xr	Version 7.10.2
Cisco Ios Xr	Version 7.11.1
Cisco Ios Xr	Version 7.11.2
Cisco Ios Xr	Version 7.7.1
Cisco Ios Xr	Version 7.7.21
Cisco Ios Xr	Version 7.7.2
Cisco Ios Xr	Version 7.8.12
Cisco Ios Xr	Version 7.8.1
Cisco Ios Xr	Version 7.8.22
Cisco Ios Xr	Version 7.8.2
Cisco Ios Xr	Version 7.9.1
Cisco Ios Xr	Version 7.9.21
Cisco Ios Xr	Version 7.9.2

Related CWEs

CWE-401

Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

References (1)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pak-mem-exhst-3ke9FeFy

Source: psirt@cisco.com

Vendor Advisory

Timeline

No history available yet.