Lucene search

CiscoCISCO-SA-20190925-UTD

HistorySep 25, 2019 - 4:00 p.m.

Cisco IOS XE Software Unified Threat Defense Denial of Service Vulnerability

2019-09-2516:00:00

tools.cisco.com

0.002 Low

EPSS

Percentile

52.7%

JSON

A vulnerability in Unified Threat Defense (UTD) in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload.

The vulnerability is due to improper validation of IPv6 packets through the UTD feature. An attacker could exploit this vulnerability by sending IPv6 traffic through an affected device that is configured with UTD. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-utd [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-utd”]

This advisory is part of the September 25, 2019, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 12 Cisco Security Advisories that describe 13 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2019 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-72547”].

Affected configurations

Vulners

Node

ciscorvs4000_softwareMatch3.16s

ciscorvs4000_softwareMatch3.17s

ciscorvs4000_softwareMatch16.2

ciscorvs4000_softwareMatch16.3

ciscorvs4000_softwareMatch16.4

ciscorvs4000_softwareMatch16.5

ciscorvs4000_softwareMatch3.18sp

ciscorvs4000_softwareMatch16.6

ciscorvs4000_softwareMatch16.7

ciscorvs4000_softwareMatch16.8

ciscorvs4000_softwareMatch16.9

ciscorvs4000_softwareMatch16.10

ciscorvs4000_softwareMatch3.16.0s

ciscorvs4000_softwareMatch3.16.1as

ciscorvs4000_softwareMatch3.16.2s

ciscorvs4000_softwareMatch3.16.0cs

ciscorvs4000_softwareMatch3.16.3s

ciscorvs4000_softwareMatch3.16.4as

ciscorvs4000_softwareMatch3.16.4bs

ciscorvs4000_softwareMatch3.16.4gs

ciscorvs4000_softwareMatch3.16.5s

ciscorvs4000_softwareMatch3.16.4cs

ciscorvs4000_softwareMatch3.16.4ds

ciscorvs4000_softwareMatch3.16.4es

ciscorvs4000_softwareMatch3.16.6s

ciscorvs4000_softwareMatch3.16.5as

ciscorvs4000_softwareMatch3.16.5bs

ciscorvs4000_softwareMatch3.16.7s

ciscorvs4000_softwareMatch3.16.6bs

ciscorvs4000_softwareMatch3.16.7as

ciscorvs4000_softwareMatch3.16.7bs

ciscorvs4000_softwareMatch3.16.8s

ciscorvs4000_softwareMatch3.17.0s

ciscorvs4000_softwareMatch3.17.1s

ciscorvs4000_softwareMatch3.17.2s

ciscorvs4000_softwareMatch3.17.3s

ciscorvs4000_softwareMatch3.17.4s

ciscorvs4000_softwareMatch16.2.1

ciscorvs4000_softwareMatch16.2.2

ciscorvs4000_softwareMatch16.3.1

ciscorvs4000_softwareMatch16.3.2

ciscorvs4000_softwareMatch16.3.3

ciscorvs4000_softwareMatch16.3.1a

ciscorvs4000_softwareMatch16.3.4

ciscorvs4000_softwareMatch16.3.5

ciscorvs4000_softwareMatch16.3.6

ciscorvs4000_softwareMatch16.3.7

ciscorvs4000_softwareMatch16.4.1

ciscorvs4000_softwareMatch16.4.2

ciscorvs4000_softwareMatch16.4.3

ciscorvs4000_softwareMatch16.5.1

ciscorvs4000_softwareMatch16.5.1b

ciscorvs4000_softwareMatch16.5.2

ciscorvs4000_softwareMatch16.5.3

ciscorvs4000_softwareMatch3.18.0sp

ciscorvs4000_softwareMatch16.6.1

ciscorvs4000_softwareMatch16.6.2

ciscorvs4000_softwareMatch16.6.3

ciscorvs4000_softwareMatch16.6.4

ciscorvs4000_softwareMatch16.6.5

ciscorvs4000_softwareMatch16.6.4s

ciscorvs4000_softwareMatch16.7.1

ciscorvs4000_softwareMatch16.7.2

ciscorvs4000_softwareMatch16.7.3

ciscorvs4000_softwareMatch16.8.1

ciscorvs4000_softwareMatch16.8.1a

ciscorvs4000_softwareMatch16.8.1s

ciscorvs4000_softwareMatch16.8.1c

ciscorvs4000_softwareMatch16.8.2

ciscorvs4000_softwareMatch16.8.3

ciscorvs4000_softwareMatch16.9.1

ciscorvs4000_softwareMatch16.9.2

ciscorvs4000_softwareMatch16.9.1a

ciscorvs4000_softwareMatch16.9.1s

ciscorvs4000_softwareMatch16.9.2s

ciscorvs4000_softwareMatch16.10.1

ciscorvs4000_softwareMatch16.10.1a

ciscorvs4000_softwareMatch16.10.1b

ciscorvs4000_softwareMatch16.10.1s

ciscorvs4000_softwareMatch16.10.1e

CPENameOperatorVersion
cisco ios xe softwareeq3.16S
cisco ios xe softwareeq3.17S
cisco ios xe softwareeq16.2
cisco ios xe softwareeq16.3
cisco ios xe softwareeq16.4
cisco ios xe softwareeq16.5
cisco ios xe softwareeq3.18SP
cisco ios xe softwareeq16.6
cisco ios xe softwareeq16.7
cisco ios xe softwareeq16.8

Name	Operator	Version
cisco ios xe software	eq	3.16S
cisco ios xe software	eq	3.17S
cisco ios xe software	eq	16.2
cisco ios xe software	eq	16.3
cisco ios xe software	eq	16.4
cisco ios xe software	eq	16.5
cisco ios xe software	eq	3.18SP
cisco ios xe software	eq	16.6
cisco ios xe software	eq	16.7
cisco ios xe software	eq	16.8