CVE-2024-20313

Published: Apr 24, 2024Modified: Nov 21, 2024

7.4

Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Exploitability: 2.8 / Impact: 4.0

Source: NVD

Description

A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of OSPF updates that are processed by a device. An attacker could exploit this vulnerability by sending a malformed OSPF update to the device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition.

Affected (38)

Products: Cisco: Ios Xe

Cisco

1 product

Ios Xe

Configuration A

38 vulnerable

Vulnerable Software	Affected Versions
Cisco Ios Xe	Version 17.10.1
Cisco Ios Xe	Version 17.10.1a
Cisco Ios Xe	Version 17.10.1b
Cisco Ios Xe	Version 17.11.1
Cisco Ios Xe	Version 17.11.1a
Cisco Ios Xe	Version 17.11.99sw
Cisco Ios Xe	Version 17.5.1
Cisco Ios Xe	Version 17.5.1a
Cisco Ios Xe	Version 17.6.1
Cisco Ios Xe	Version 17.6.1a
Cisco Ios Xe	Version 17.6.1w
Cisco Ios Xe	Version 17.6.1x
Cisco Ios Xe	Version 17.6.1y
Cisco Ios Xe	Version 17.6.1z1
Cisco Ios Xe	Version 17.6.1z
Cisco Ios Xe	Version 17.6.2
Cisco Ios Xe	Version 17.6.3
Cisco Ios Xe	Version 17.6.3a
Cisco Ios Xe	Version 17.6.4
Cisco Ios Xe	Version 17.6.5
Cisco Ios Xe	Version 17.6.5a
Cisco Ios Xe	Version 17.7.1
Cisco Ios Xe	Version 17.7.1a
Cisco Ios Xe	Version 17.7.1b
Cisco Ios Xe	Version 17.7.2
Cisco Ios Xe	Version 17.8.1
Cisco Ios Xe	Version 17.8.1a
Cisco Ios Xe	Version 17.9.1
Cisco Ios Xe	Version 17.9.1a
Cisco Ios Xe	Version 17.9.1w
Cisco Ios Xe	Version 17.9.1x1
Cisco Ios Xe	Version 17.9.1x
Cisco Ios Xe	Version 17.9.1y1
Cisco Ios Xe	Version 17.9.1y
Cisco Ios Xe	Version 17.9.2
Cisco Ios Xe	Version 17.9.2a
Cisco Ios Xe	Version 17.9.3
Cisco Ios Xe	Version 17.9.3a

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ospf-dos-dR9Sfrxp

Source: psirt@cisco.com

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ospf-dos-dR9Sfrxp

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.