Lucene search

CiscoCISCO-SA-IOSXE-6VPE-DOS-TJBTF5ZV

HistorySep 28, 2022 - 4:00 p.m.

Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability

2022-09-2816:00:00

tools.cisco.com

cisco

ipv6 vpn

mpls

dos

vulnerability

zone-based firewall

6vpe

software

update

workaround

advisory

EPSS

0.001

Percentile

19.8%

JSON

A vulnerability in the implementation of IPv6 VPN over MPLS (6VPE) with Zone-Based Firewall (ZBFW) of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to improper error handling of an IPv6 packet that is forwarded from an MPLS and ZBFW-enabled interface in a 6VPE deployment. An attacker could exploit this vulnerability by sending a crafted IPv6 packet sourced from a device on the IPv6-enabled virtual routing and forwarding (VRF) interface through the affected device. A successful exploit could allow the attacker to reload the device, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-6vpe-dos-tJBtf5Zv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-6vpe-dos-tJBtf5Zv”]

This advisory is part of the September 2022 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: September 2022 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74745”]

Affected configurations

Vulners

Node

ciscocisco_ios_xe_softwareMatch3.16s

ciscocisco_ios_xe_softwareMatch3.17s

ciscocisco_ios_xe_softwareMatch16.2

ciscocisco_ios_xe_softwareMatch16.3

ciscocisco_ios_xe_softwareMatch16.4

ciscocisco_ios_xe_softwareMatch16.5

ciscocisco_ios_xe_softwareMatch16.6

ciscocisco_ios_xe_softwareMatch16.7

ciscocisco_ios_xe_softwareMatch16.8

ciscocisco_ios_xe_softwareMatch16.9

ciscocisco_ios_xe_softwareMatch16.10

ciscocisco_ios_xe_softwareMatch16.11

ciscocisco_ios_xe_softwareMatch16.12

ciscocisco_ios_xe_softwareMatch17.1

ciscocisco_ios_xe_softwareMatch17.2

ciscocisco_ios_xe_softwareMatch17.3

ciscocisco_ios_xe_softwareMatch17.4

ciscocisco_ios_xe_softwareMatch17.5

ciscocisco_ios_xe_softwareMatch17.6

ciscocisco_ios_xe_softwareMatch17.7

ciscocisco_ios_xe_softwareMatchany

ciscocisco_ios_xe_softwareMatch3.16.0s

ciscocisco_ios_xe_softwareMatch3.16.1as

ciscocisco_ios_xe_softwareMatch3.16.2s

ciscocisco_ios_xe_softwareMatch3.16.0cs

ciscocisco_ios_xe_softwareMatch3.16.3s

ciscocisco_ios_xe_softwareMatch3.16.2bs

ciscocisco_ios_xe_softwareMatch3.16.4as

ciscocisco_ios_xe_softwareMatch3.16.4bs

ciscocisco_ios_xe_softwareMatch3.16.4gs

ciscocisco_ios_xe_softwareMatch3.16.5s

ciscocisco_ios_xe_softwareMatch3.16.4cs

ciscocisco_ios_xe_softwareMatch3.16.4ds

ciscocisco_ios_xe_softwareMatch3.16.4es

ciscocisco_ios_xe_softwareMatch3.16.6s

ciscocisco_ios_xe_softwareMatch3.16.5as

ciscocisco_ios_xe_softwareMatch3.16.5bs

ciscocisco_ios_xe_softwareMatch3.16.7s

ciscocisco_ios_xe_softwareMatch3.16.6bs

ciscocisco_ios_xe_softwareMatch3.16.7as

ciscocisco_ios_xe_softwareMatch3.16.7bs

ciscocisco_ios_xe_softwareMatch3.16.8s

ciscocisco_ios_xe_softwareMatch3.16.9s

ciscocisco_ios_xe_softwareMatch3.16.10s

ciscocisco_ios_xe_softwareMatch3.16.10as

ciscocisco_ios_xe_softwareMatch3.16.10bs

ciscocisco_ios_xe_softwareMatch3.17.0s

ciscocisco_ios_xe_softwareMatch3.17.1s

ciscocisco_ios_xe_softwareMatch3.17.2s

ciscocisco_ios_xe_softwareMatch3.17.1as

ciscocisco_ios_xe_softwareMatch3.17.3s

ciscocisco_ios_xe_softwareMatch3.17.4s

ciscocisco_ios_xe_softwareMatch16.2.1

ciscocisco_ios_xe_softwareMatch16.2.2

ciscocisco_ios_xe_softwareMatch16.3.1

ciscocisco_ios_xe_softwareMatch16.3.2

ciscocisco_ios_xe_softwareMatch16.3.3

ciscocisco_ios_xe_softwareMatch16.3.1a

ciscocisco_ios_xe_softwareMatch16.3.4

ciscocisco_ios_xe_softwareMatch16.3.5

ciscocisco_ios_xe_softwareMatch16.3.6

ciscocisco_ios_xe_softwareMatch16.3.7

ciscocisco_ios_xe_softwareMatch16.3.8

ciscocisco_ios_xe_softwareMatch16.3.9

ciscocisco_ios_xe_softwareMatch16.3.10

ciscocisco_ios_xe_softwareMatch16.3.11

ciscocisco_ios_xe_softwareMatch16.4.1

ciscocisco_ios_xe_softwareMatch16.4.2

ciscocisco_ios_xe_softwareMatch16.4.3

ciscocisco_ios_xe_softwareMatch16.5.1

ciscocisco_ios_xe_softwareMatch16.5.1b

ciscocisco_ios_xe_softwareMatch16.5.2

ciscocisco_ios_xe_softwareMatch16.5.3

ciscocisco_ios_xe_softwareMatch16.6.1

ciscocisco_ios_xe_softwareMatch16.6.2

ciscocisco_ios_xe_softwareMatch16.6.3

ciscocisco_ios_xe_softwareMatch16.6.4

ciscocisco_ios_xe_softwareMatch16.6.5

ciscocisco_ios_xe_softwareMatch16.6.6

ciscocisco_ios_xe_softwareMatch16.6.5b

ciscocisco_ios_xe_softwareMatch16.6.7

ciscocisco_ios_xe_softwareMatch16.6.7a

ciscocisco_ios_xe_softwareMatch16.6.8

ciscocisco_ios_xe_softwareMatch16.6.9

ciscocisco_ios_xe_softwareMatch16.6.10

ciscocisco_ios_xe_softwareMatch16.7.1

ciscocisco_ios_xe_softwareMatch16.7.2

ciscocisco_ios_xe_softwareMatch16.7.3

ciscocisco_ios_xe_softwareMatch16.8.1

ciscocisco_ios_xe_softwareMatch16.8.1s

ciscocisco_ios_xe_softwareMatch16.8.2

ciscocisco_ios_xe_softwareMatch16.8.3

ciscocisco_ios_xe_softwareMatch16.9.1

ciscocisco_ios_xe_softwareMatch16.9.2

ciscocisco_ios_xe_softwareMatch16.9.1s

ciscocisco_ios_xe_softwareMatch16.9.1c

ciscocisco_ios_xe_softwareMatch16.9.3

ciscocisco_ios_xe_softwareMatch16.9.2s

ciscocisco_ios_xe_softwareMatch16.9.4

ciscocisco_ios_xe_softwareMatch16.9.3s

ciscocisco_ios_xe_softwareMatch16.9.5

ciscocisco_ios_xe_softwareMatch16.9.6

ciscocisco_ios_xe_softwareMatch16.9.7

ciscocisco_ios_xe_softwareMatch16.9.8

ciscocisco_ios_xe_softwareMatch16.9.8a

ciscocisco_ios_xe_softwareMatch16.10.1

ciscocisco_ios_xe_softwareMatch16.10.1a

ciscocisco_ios_xe_softwareMatch16.10.1b

ciscocisco_ios_xe_softwareMatch16.10.1s

ciscocisco_ios_xe_softwareMatch16.10.1e

ciscocisco_ios_xe_softwareMatch16.10.2

ciscocisco_ios_xe_softwareMatch16.10.3

ciscocisco_ios_xe_softwareMatch16.11.1

ciscocisco_ios_xe_softwareMatch16.11.1a

ciscocisco_ios_xe_softwareMatch16.11.1s

ciscocisco_ios_xe_softwareMatch16.11.1c

ciscocisco_ios_xe_softwareMatch16.12.1

ciscocisco_ios_xe_softwareMatch16.12.1s

ciscocisco_ios_xe_softwareMatch16.12.1a

ciscocisco_ios_xe_softwareMatch16.12.1c

ciscocisco_ios_xe_softwareMatch16.12.2

ciscocisco_ios_xe_softwareMatch16.12.3

ciscocisco_ios_xe_softwareMatch16.12.2s

ciscocisco_ios_xe_softwareMatch16.12.2t

ciscocisco_ios_xe_softwareMatch16.12.4

ciscocisco_ios_xe_softwareMatch16.12.3s

ciscocisco_ios_xe_softwareMatch16.12.5

ciscocisco_ios_xe_softwareMatch16.12.6

ciscocisco_ios_xe_softwareMatch16.12.7

ciscocisco_ios_xe_softwareMatch17.1.1

ciscocisco_ios_xe_softwareMatch17.1.1s

ciscocisco_ios_xe_softwareMatch17.1.2

ciscocisco_ios_xe_softwareMatch17.1.1t

ciscocisco_ios_xe_softwareMatch17.1.3

ciscocisco_ios_xe_softwareMatch17.2.1

ciscocisco_ios_xe_softwareMatch17.2.1r

ciscocisco_ios_xe_softwareMatch17.2.1v

ciscocisco_ios_xe_softwareMatch17.2.2

ciscocisco_ios_xe_softwareMatch17.2.3

ciscocisco_ios_xe_softwareMatch17.3.2

ciscocisco_ios_xe_softwareMatch17.3.3

ciscocisco_ios_xe_softwareMatch17.3.1a

ciscocisco_ios_xe_softwareMatch17.3.2a

ciscocisco_ios_xe_softwareMatch17.3.4

ciscocisco_ios_xe_softwareMatch17.3.5

ciscocisco_ios_xe_softwareMatch17.3.4a

ciscocisco_ios_xe_softwareMatch17.4.1

ciscocisco_ios_xe_softwareMatch17.4.2

ciscocisco_ios_xe_softwareMatch17.4.1a

ciscocisco_ios_xe_softwareMatch17.4.1b

ciscocisco_ios_xe_softwareMatch17.5.1

ciscocisco_ios_xe_softwareMatch17.5.1a

ciscocisco_ios_xe_softwareMatch17.6.1

ciscocisco_ios_xe_softwareMatch17.6.2

ciscocisco_ios_xe_softwareMatch17.6.1a

ciscocisco_ios_xe_softwareMatch17.7.1

ciscocisco_ios_xe_softwareMatch17.7.1a

ciscocisco_ios_xe_softwareMatchany

VendorProductVersionCPE
ciscocisco_ios_xe_software3.16scpe:2.3:a:cisco:cisco_ios_xe_software:3.16s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.17scpe:2.3:a:cisco:cisco_ios_xe_software:3.17s:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.2cpe:2.3:a:cisco:cisco_ios_xe_software:16.2:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.3cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.4cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.5cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.6cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.7cpe:2.3:a:cisco:cisco_ios_xe_software:16.7:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.8cpe:2.3:a:cisco:cisco_ios_xe_software:16.8:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.9cpe:2.3:a:cisco:cisco_ios_xe_software:16.9:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	cisco_ios_xe_software	3.16s	cpe:2.3:a:cisco:cisco_ios_xe_software:3.16s:::::::*
cisco	cisco_ios_xe_software	3.17s	cpe:2.3:a:cisco:cisco_ios_xe_software:3.17s:::::::*
cisco	cisco_ios_xe_software	16.2	cpe:2.3:a:cisco:cisco_ios_xe_software:16.2:::::::*
cisco	cisco_ios_xe_software	16.3	cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:::::::*
cisco	cisco_ios_xe_software	16.4	cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:::::::*
cisco	cisco_ios_xe_software	16.5	cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:::::::*
cisco	cisco_ios_xe_software	16.6	cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:::::::*
cisco	cisco_ios_xe_software	16.7	cpe:2.3:a:cisco:cisco_ios_xe_software:16.7:::::::*
cisco	cisco_ios_xe_software	16.8	cpe:2.3:a:cisco:cisco_ios_xe_software:16.8:::::::*
cisco	cisco_ios_xe_software	16.9	cpe:2.3:a:cisco:cisco_ios_xe_software:16.9:::::::*