CiscoCISCO-SA-20160715-BGPCisco IOS and IOS XE Software Border Gateway Protocol Message Processing Denial of Service Vulnerability
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:N/I:N/A:C
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
60.0%
A vulnerability in Border Gateway Protocol (BGP) message processing functions of Cisco IOS and IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload.
The vulnerability is due to improper processing of crafted BGP attributes. An attacker could exploit this vulnerability by sending crafted BGP messages to an affected device for processing when certain conditions are met. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
There are workarounds that address this vulnerability.
This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160715-bgp”]
Affected configurations
Related
4.9 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:S/C:N/I:N/A:C
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
0.002 Low
EPSS
Percentile
60.0%