Lucene search

K
ciscoCiscoCISCO-SA-ASR900ACL-UEEYCXKV
HistorySep 22, 2021 - 4:00 p.m.

Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access Control List Bypass Vulnerability

2021-09-2216:00:00
tools.cisco.com
28
cisco
asr 900
asr 920
access control list
bypass
vulnerability
remote attacker
software updates
acl

EPSS

0.001

Percentile

47.9%

A vulnerability in the access control list (ACL) programming of Cisco ASR 900 and ASR 920 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass a configured ACL.

This vulnerability is due to incorrect programming of hardware when an ACL is configured using a method other than the configuration CLI. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass an ACL on the affected device.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr900acl-UeEyCxkv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asr900acl-UeEyCxkv”]

This advisory is part of the September 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: September 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74581”]

Affected configurations

Vulners
Node
ciscocisco_ios_xe_softwareMatch3.13s
OR
ciscocisco_ios_xe_softwareMatch3.13.4s
OR
ciscocisco_ios_xe_softwareMatch3.13.5s
OR
ciscocisco_ios_xe_softwareMatch3.13.6s
OR
ciscocisco_ios_xe_softwareMatch3.13.7s
OR
ciscocisco_ios_xe_softwareMatch3.13.6as
OR
ciscocisco_ios_xe_softwareMatch3.13.8s
OR
ciscocisco_ios_xe_softwareMatch3.13.9s
OR
ciscocisco_ios_xe_softwareMatch3.13.10s
OR
ciscocisco_ios_xe_softwareMatch3.14s
OR
ciscocisco_ios_xe_softwareMatch3.14.3s
OR
ciscocisco_ios_xe_softwareMatch3.14.4s
OR
ciscocisco_ios_xe_softwareMatch3.15s
OR
ciscocisco_ios_xe_softwareMatch3.15.0s
OR
ciscocisco_ios_xe_softwareMatch3.15.1s
OR
ciscocisco_ios_xe_softwareMatch3.15.2s
OR
ciscocisco_ios_xe_softwareMatch3.15.3s
OR
ciscocisco_ios_xe_softwareMatch3.15.4s
OR
ciscocisco_ios_xe_softwareMatch3.16s
OR
ciscocisco_ios_xe_softwareMatch3.16.0s
OR
ciscocisco_ios_xe_softwareMatch3.16.0as
OR
ciscocisco_ios_xe_softwareMatch3.16.1as
OR
ciscocisco_ios_xe_softwareMatch3.16.2as
OR
ciscocisco_ios_xe_softwareMatch3.16.0bs
OR
ciscocisco_ios_xe_softwareMatch3.16.3as
OR
ciscocisco_ios_xe_softwareMatch3.16.4s
OR
ciscocisco_ios_xe_softwareMatch3.16.4bs
OR
ciscocisco_ios_xe_softwareMatch3.16.5s
OR
ciscocisco_ios_xe_softwareMatch3.16.6s
OR
ciscocisco_ios_xe_softwareMatch3.16.5as
OR
ciscocisco_ios_xe_softwareMatch3.16.7s
OR
ciscocisco_ios_xe_softwareMatch3.16.6bs
OR
ciscocisco_ios_xe_softwareMatch3.16.7bs
OR
ciscocisco_ios_xe_softwareMatch3.16.8s
OR
ciscocisco_ios_xe_softwareMatch3.16.9s
OR
ciscocisco_ios_xe_softwareMatch3.16.10s
OR
ciscocisco_ios_xe_softwareMatch3.17s
OR
ciscocisco_ios_xe_softwareMatch3.17.0s
OR
ciscocisco_ios_xe_softwareMatch3.17.1s
OR
ciscocisco_ios_xe_softwareMatch3.17.2s
OR
ciscocisco_ios_xe_softwareMatch3.17.3s
OR
ciscocisco_ios_xe_softwareMatch3.17.4s
OR
ciscocisco_ios_xe_softwareMatch16.5
OR
ciscocisco_ios_xe_softwareMatch16.5.1
OR
ciscocisco_ios_xe_softwareMatch16.5.2
OR
ciscocisco_ios_xe_softwareMatch16.5.3
OR
ciscocisco_ios_xe_softwareMatch3.18s
OR
ciscocisco_ios_xe_softwareMatch3.18.0s
OR
ciscocisco_ios_xe_softwareMatch3.18.1s
OR
ciscocisco_ios_xe_softwareMatch3.18.2s
OR
ciscocisco_ios_xe_softwareMatch3.18.3s
OR
ciscocisco_ios_xe_softwareMatch3.18.4s
OR
ciscocisco_ios_xe_softwareMatch3.18sp
OR
ciscocisco_ios_xe_softwareMatch3.18.0sp
OR
ciscocisco_ios_xe_softwareMatch3.18.1sp
OR
ciscocisco_ios_xe_softwareMatch3.18.1gsp
OR
ciscocisco_ios_xe_softwareMatch3.18.1bsp
OR
ciscocisco_ios_xe_softwareMatch3.18.2sp
OR
ciscocisco_ios_xe_softwareMatch3.18.1hsp
OR
ciscocisco_ios_xe_softwareMatch3.18.1isp
OR
ciscocisco_ios_xe_softwareMatch3.18.3sp
OR
ciscocisco_ios_xe_softwareMatch3.18.4sp
OR
ciscocisco_ios_xe_softwareMatch3.18.5sp
OR
ciscocisco_ios_xe_softwareMatch3.18.6sp
OR
ciscocisco_ios_xe_softwareMatch3.18.7sp
OR
ciscocisco_ios_xe_softwareMatch3.18.8asp
OR
ciscocisco_ios_xe_softwareMatch3.18.9sp
OR
ciscocisco_ios_xe_softwareMatch16.6
OR
ciscocisco_ios_xe_softwareMatch16.6.1
OR
ciscocisco_ios_xe_softwareMatch16.6.2
OR
ciscocisco_ios_xe_softwareMatch16.6.3
OR
ciscocisco_ios_xe_softwareMatch16.6.4
OR
ciscocisco_ios_xe_softwareMatch16.6.5
OR
ciscocisco_ios_xe_softwareMatch16.6.5a
OR
ciscocisco_ios_xe_softwareMatch16.6.6
OR
ciscocisco_ios_xe_softwareMatch16.6.7
OR
ciscocisco_ios_xe_softwareMatch16.6.8
OR
ciscocisco_ios_xe_softwareMatch16.6.9
OR
ciscocisco_ios_xe_softwareMatch16.7
OR
ciscocisco_ios_xe_softwareMatch16.7.1
OR
ciscocisco_ios_xe_softwareMatch16.7.2
OR
ciscocisco_ios_xe_softwareMatch16.7.3
OR
ciscocisco_ios_xe_softwareMatch16.8
OR
ciscocisco_ios_xe_softwareMatch16.8.1
OR
ciscocisco_ios_xe_softwareMatch16.8.1b
OR
ciscocisco_ios_xe_softwareMatch16.8.1c
OR
ciscocisco_ios_xe_softwareMatch16.9
OR
ciscocisco_ios_xe_softwareMatch16.9.1
OR
ciscocisco_ios_xe_softwareMatch16.9.2
OR
ciscocisco_ios_xe_softwareMatch16.9.1a
OR
ciscocisco_ios_xe_softwareMatch16.9.1b
OR
ciscocisco_ios_xe_softwareMatch16.9.3
OR
ciscocisco_ios_xe_softwareMatch16.9.2a
OR
ciscocisco_ios_xe_softwareMatch16.9.3h
OR
ciscocisco_ios_xe_softwareMatch16.9.4
OR
ciscocisco_ios_xe_softwareMatch16.9.4c
OR
ciscocisco_ios_xe_softwareMatch16.9.5
OR
ciscocisco_ios_xe_softwareMatch16.9.5f
OR
ciscocisco_ios_xe_softwareMatch16.9.6
OR
ciscocisco_ios_xe_softwareMatch16.9.7
OR
ciscocisco_ios_xe_softwareMatch16.10
OR
ciscocisco_ios_xe_softwareMatch16.10.1
OR
ciscocisco_ios_xe_softwareMatch16.11
OR
ciscocisco_ios_xe_softwareMatch16.11.1
OR
ciscocisco_ios_xe_softwareMatch16.11.1a
OR
ciscocisco_ios_xe_softwareMatch16.11.1b
OR
ciscocisco_ios_xe_softwareMatch16.11.2
OR
ciscocisco_ios_xe_softwareMatch16.11.1s
OR
ciscocisco_ios_xe_softwareMatch16.11.1c
OR
ciscocisco_ios_xe_softwareMatch16.12
OR
ciscocisco_ios_xe_softwareMatch16.12.1
OR
ciscocisco_ios_xe_softwareMatch16.12.2
OR
ciscocisco_ios_xe_softwareMatch16.12.2a
OR
ciscocisco_ios_xe_softwareMatch16.12.3
OR
ciscocisco_ios_xe_softwareMatch16.12.4
OR
ciscocisco_ios_xe_softwareMatch16.12.5
OR
ciscocisco_ios_xe_softwareMatch16.12.5a
OR
ciscocisco_ios_xe_softwareMatch17.1
OR
ciscocisco_ios_xe_softwareMatch17.1.1
OR
ciscocisco_ios_xe_softwareMatch17.1.1a
OR
ciscocisco_ios_xe_softwareMatch17.1.2
OR
ciscocisco_ios_xe_softwareMatch17.1.3
OR
ciscocisco_ios_xe_softwareMatch17.2
OR
ciscocisco_ios_xe_softwareMatch17.2.1
OR
ciscocisco_ios_xe_softwareMatch17.3
OR
ciscocisco_ios_xe_softwareMatch17.3.1
OR
ciscocisco_ios_xe_softwareMatch17.3.2
OR
ciscocisco_ios_xe_softwareMatch17.3.3
OR
ciscocisco_ios_xe_softwareMatch17.3.2a
OR
ciscocisco_ios_xe_softwareMatch17.4
OR
ciscocisco_ios_xe_softwareMatch17.4.1
OR
ciscocisco_ios_xe_software
VendorProductVersionCPE
ciscocisco_ios_xe_software3.13scpe:2.3:a:cisco:cisco_ios_xe_software:3.13s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.4scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.4s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.5scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.5s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.6scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.6s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.7scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.7s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.6ascpe:2.3:a:cisco:cisco_ios_xe_software:3.13.6as:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.8scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.8s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.9scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.9s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.13.10scpe:2.3:a:cisco:cisco_ios_xe_software:3.13.10s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.14scpe:2.3:a:cisco:cisco_ios_xe_software:3.14s:*:*:*:*:*:*:*
Rows per page:
1-10 of 1321

EPSS

0.001

Percentile

47.9%

Related for CISCO-SA-ASR900ACL-UEEYCXKV