Lucene search
CiscoCISCO-SA-ASR900ACL-UEEYCXKVHistorySep 22, 2021 - 4:00 p.m.
Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability
2021-09-2216:00:00
tools.cisco.com
26
cisco
asr 900
asr 920
access control list
bypass
vulnerability
remote attacker
software updates
acl
EPSS
0.001
Percentile
47.9%
A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL.
This vulnerability is due to incorrect programming of hardware when an ACL is configured using a method other than the configuration CLI. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass an ACL on the affected device.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr900acl-UeEyCxkv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr900acl-UeEyCxkv”]
This advisory is part of the September 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: September 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74581”]
Affected configurations
Node
ciscocisco_ios_xe_softwareMatch3.13s
ORciscocisco_ios_xe_softwareMatch3.14s
ORciscocisco_ios_xe_softwareMatch3.15s
ORciscocisco_ios_xe_softwareMatch3.16s
ORciscocisco_ios_xe_softwareMatch3.17s
ORciscocisco_ios_xe_softwareMatch16.5
ORciscocisco_ios_xe_softwareMatch3.18s
ORciscocisco_ios_xe_softwareMatch3.18sp
ORciscocisco_ios_xe_softwareMatch16.6
ORciscocisco_ios_xe_softwareMatch16.7
ORciscocisco_ios_xe_softwareMatch16.8
ORciscocisco_ios_xe_softwareMatch16.9
ORciscocisco_ios_xe_softwareMatch16.10
ORciscocisco_ios_xe_softwareMatch16.11
ORciscocisco_ios_xe_softwareMatch16.12
ORciscocisco_ios_xe_softwareMatch17.1
ORciscocisco_ios_xe_softwareMatch17.2
ORciscocisco_ios_xe_softwareMatch17.3
ORciscocisco_ios_xe_softwareMatch17.4
ORciscocisco_ios_xe_softwareMatchany
ORciscocisco_ios_xe_softwareMatch3.13.4s
ORciscocisco_ios_xe_softwareMatch3.13.5s
ORciscocisco_ios_xe_softwareMatch3.13.6s
ORciscocisco_ios_xe_softwareMatch3.13.7s
ORciscocisco_ios_xe_softwareMatch3.13.6as
ORciscocisco_ios_xe_softwareMatch3.13.8s
ORciscocisco_ios_xe_softwareMatch3.13.9s
ORciscocisco_ios_xe_softwareMatch3.13.10s
ORciscocisco_ios_xe_softwareMatch3.14.3s
ORciscocisco_ios_xe_softwareMatch3.14.4s
ORciscocisco_ios_xe_softwareMatch3.15.0s
ORciscocisco_ios_xe_softwareMatch3.15.1s
ORciscocisco_ios_xe_softwareMatch3.15.2s
ORciscocisco_ios_xe_softwareMatch3.15.3s
ORciscocisco_ios_xe_softwareMatch3.15.4s
ORciscocisco_ios_xe_softwareMatch3.16.0s
ORciscocisco_ios_xe_softwareMatch3.16.0as
ORciscocisco_ios_xe_softwareMatch3.16.1as
ORciscocisco_ios_xe_softwareMatch3.16.2as
ORciscocisco_ios_xe_softwareMatch3.16.0bs
ORciscocisco_ios_xe_softwareMatch3.16.3as
ORciscocisco_ios_xe_softwareMatch3.16.4s
ORciscocisco_ios_xe_softwareMatch3.16.4bs
ORciscocisco_ios_xe_softwareMatch3.16.5s
ORciscocisco_ios_xe_softwareMatch3.16.6s
ORciscocisco_ios_xe_softwareMatch3.16.5as
ORciscocisco_ios_xe_softwareMatch3.16.7s
ORciscocisco_ios_xe_softwareMatch3.16.6bs
ORciscocisco_ios_xe_softwareMatch3.16.7bs
ORciscocisco_ios_xe_softwareMatch3.16.8s
ORciscocisco_ios_xe_softwareMatch3.16.9s
ORciscocisco_ios_xe_softwareMatch3.16.10s
ORciscocisco_ios_xe_softwareMatch3.17.0s
ORciscocisco_ios_xe_softwareMatch3.17.1s
ORciscocisco_ios_xe_softwareMatch3.17.2s
ORciscocisco_ios_xe_softwareMatch3.17.3s
ORciscocisco_ios_xe_softwareMatch3.17.4s
ORciscocisco_ios_xe_softwareMatch16.5.1
ORciscocisco_ios_xe_softwareMatch16.5.2
ORciscocisco_ios_xe_softwareMatch16.5.3
ORciscocisco_ios_xe_softwareMatch3.18.0s
ORciscocisco_ios_xe_softwareMatch3.18.1s
ORciscocisco_ios_xe_softwareMatch3.18.2s
ORciscocisco_ios_xe_softwareMatch3.18.3s
ORciscocisco_ios_xe_softwareMatch3.18.4s
ORciscocisco_ios_xe_softwareMatch3.18.0sp
ORciscocisco_ios_xe_softwareMatch3.18.1sp
ORciscocisco_ios_xe_softwareMatch3.18.1gsp
ORciscocisco_ios_xe_softwareMatch3.18.1bsp
ORciscocisco_ios_xe_softwareMatch3.18.2sp
ORciscocisco_ios_xe_softwareMatch3.18.1hsp
ORciscocisco_ios_xe_softwareMatch3.18.1isp
ORciscocisco_ios_xe_softwareMatch3.18.3sp
ORciscocisco_ios_xe_softwareMatch3.18.4sp
ORciscocisco_ios_xe_softwareMatch3.18.5sp
ORciscocisco_ios_xe_softwareMatch3.18.6sp
ORciscocisco_ios_xe_softwareMatch3.18.7sp
ORciscocisco_ios_xe_softwareMatch3.18.8asp
ORciscocisco_ios_xe_softwareMatch3.18.9sp
ORciscocisco_ios_xe_softwareMatch16.6.1
ORciscocisco_ios_xe_softwareMatch16.6.2
ORciscocisco_ios_xe_softwareMatch16.6.3
ORciscocisco_ios_xe_softwareMatch16.6.4
ORciscocisco_ios_xe_softwareMatch16.6.5
ORciscocisco_ios_xe_softwareMatch16.6.5a
ORciscocisco_ios_xe_softwareMatch16.6.6
ORciscocisco_ios_xe_softwareMatch16.6.7
ORciscocisco_ios_xe_softwareMatch16.6.8
ORciscocisco_ios_xe_softwareMatch16.6.9
ORciscocisco_ios_xe_softwareMatch16.7.1
ORciscocisco_ios_xe_softwareMatch16.7.2
ORciscocisco_ios_xe_softwareMatch16.7.3
ORciscocisco_ios_xe_softwareMatch16.8.1
ORciscocisco_ios_xe_softwareMatch16.8.1b
ORciscocisco_ios_xe_softwareMatch16.8.1c
ORciscocisco_ios_xe_softwareMatch16.9.1
ORciscocisco_ios_xe_softwareMatch16.9.2
ORciscocisco_ios_xe_softwareMatch16.9.1a
ORciscocisco_ios_xe_softwareMatch16.9.1b
ORciscocisco_ios_xe_softwareMatch16.9.3
ORciscocisco_ios_xe_softwareMatch16.9.2a
ORciscocisco_ios_xe_softwareMatch16.9.3h
ORciscocisco_ios_xe_softwareMatch16.9.4
ORciscocisco_ios_xe_softwareMatch16.9.4c
ORciscocisco_ios_xe_softwareMatch16.9.5
ORciscocisco_ios_xe_softwareMatch16.9.5f
ORciscocisco_ios_xe_softwareMatch16.9.6
ORciscocisco_ios_xe_softwareMatch16.9.7
ORciscocisco_ios_xe_softwareMatch16.10.1
ORciscocisco_ios_xe_softwareMatch16.11.1
ORciscocisco_ios_xe_softwareMatch16.11.1a
ORciscocisco_ios_xe_softwareMatch16.11.1b
ORciscocisco_ios_xe_softwareMatch16.11.2
ORciscocisco_ios_xe_softwareMatch16.11.1s
ORciscocisco_ios_xe_softwareMatch16.11.1c
ORciscocisco_ios_xe_softwareMatch16.12.1
ORciscocisco_ios_xe_softwareMatch16.12.2
ORciscocisco_ios_xe_softwareMatch16.12.2a
ORciscocisco_ios_xe_softwareMatch16.12.3
ORciscocisco_ios_xe_softwareMatch16.12.4
ORciscocisco_ios_xe_softwareMatch16.12.5
ORciscocisco_ios_xe_softwareMatch16.12.5a
ORciscocisco_ios_xe_softwareMatch17.1.1
ORciscocisco_ios_xe_softwareMatch17.1.1a
ORciscocisco_ios_xe_softwareMatch17.1.2
ORciscocisco_ios_xe_softwareMatch17.1.3
ORciscocisco_ios_xe_softwareMatch17.2.1
ORciscocisco_ios_xe_softwareMatch17.3.1
ORciscocisco_ios_xe_softwareMatch17.3.2
ORciscocisco_ios_xe_softwareMatch17.3.3
ORciscocisco_ios_xe_softwareMatch17.3.2a
ORciscocisco_ios_xe_softwareMatch17.4.1
ORciscocisco_ios_xe_softwareMatchany
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | cisco_ios_xe_software | 3.13s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.13s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.14s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.14s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.15s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.15s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.16s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.16s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.17s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.17s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.5 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.18s | cpe:2.3:a:cisco:cisco_ios_xe_software:3.18s:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 3.18sp | cpe:2.3:a:cisco:cisco_ios_xe_software:3.18sp:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.6 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.7 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.7:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2021-09-23 03:15:00
cvelist
cvelist
nvd
nvd
CVE-2021-34696
2021-09-23 03:15:15
cve
cve
CVE-2021-34696
2021-09-23 03:15:15