Lucene search
CiscoCISCO-SA-IOSXE-RPKI-DOS-2EGCNEKEHistoryApr 13, 2022 - 4:00 p.m.
Cisco IOS XE Software Border Gateway Protocol Resource Public Key Infrastructure Denial of Service Vulnerability
2022-04-1316:00:00
tools.cisco.com
27
0.001 Low
EPSS
Percentile
47.3%
A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the Border Gateway Protocol (BGP) process to crash, resulting in a denial of service (DoS) condition.
This vulnerability is due to the incorrect handling of a specific RPKI to Router (RTR) Protocol packet header. An attacker could exploit this vulnerability by compromising the RPKI validator server and sending a specifically crafted RTR packet to an affected device. Alternatively, the attacker could use man-in-the-middle techniques to impersonate the RPKI validator server and send a crafted RTR response packet over the established RTR TCP connection to the affected device. A successful exploit could allow the attacker to cause a DoS condition because the BGP process could constantly restart and BGP routing could become unstable.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-rpki-dos-2EgCNeKE [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-rpki-dos-2EgCNeKE”]
This advisory is part of the April 2022 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: April 2022 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74561”]
Affected configurations
Node
ciscocisco_iosMatch3.7sxe
ORciscocisco_iosMatch3.8sxe
ORciscocisco_iosMatch3.9sxe
ORciscocisco_iosMatch3.10sxe
ORciscocisco_iosMatch3.11sxe
ORciscocisco_iosMatch3.12sxe
ORciscocisco_iosMatch3.13sxe
ORciscocisco_iosMatch3.14sxe
ORciscocisco_iosMatch3.15sxe
ORciscocisco_iosMatch3.16sxe
ORciscocisco_iosMatch3.17sxe
ORciscocisco_iosMatch16.1xe
ORciscocisco_iosMatch16.2xe
ORciscocisco_iosMatch16.3xe
ORciscocisco_iosMatch16.4xe
ORciscocisco_iosMatch16.5xe
ORciscocisco_iosMatch3.18sxe
ORciscocisco_iosMatch3.18spxe
ORciscocisco_iosMatch16.6xe
ORciscocisco_iosMatch16.7xe
ORciscocisco_iosMatch16.8xe
ORciscocisco_iosMatch16.9xe
ORciscocisco_iosMatch16.10xe
ORciscocisco_iosMatch3.11exe
ORciscocisco_iosMatch17.6xe
ORciscocisco_iosMatchanyxe
ORciscocisco_iosMatch3.7.0sxe
ORciscocisco_iosMatch3.7.1sxe
ORciscocisco_iosMatch3.7.2sxe
ORciscocisco_iosMatch3.7.3sxe
ORciscocisco_iosMatch3.7.4sxe
ORciscocisco_iosMatch3.7.5sxe
ORciscocisco_iosMatch3.7.6sxe
ORciscocisco_iosMatch3.7.7sxe
ORciscocisco_iosMatch3.7.8sxe
ORciscocisco_iosMatch3.7.4asxe
ORciscocisco_iosMatch3.7.2tsxe
ORciscocisco_iosMatch3.7.0xbsxe
ORciscocisco_iosMatch3.7.0bsxe
ORciscocisco_iosMatch3.7.0xasxe
ORciscocisco_iosMatch3.7.1asxe
ORciscocisco_iosMatch3.8.0sxe
ORciscocisco_iosMatch3.8.1sxe
ORciscocisco_iosMatch3.8.2sxe
ORciscocisco_iosMatch3.9.1sxe
ORciscocisco_iosMatch3.9.0sxe
ORciscocisco_iosMatch3.9.2sxe
ORciscocisco_iosMatch3.9.0xasxe
ORciscocisco_iosMatch3.9.1asxe
ORciscocisco_iosMatch3.9.0asxe
ORciscocisco_iosMatch3.10.0sxe
ORciscocisco_iosMatch3.10.1sxe
ORciscocisco_iosMatch3.10.2sxe
ORciscocisco_iosMatch3.10.3sxe
ORciscocisco_iosMatch3.10.4sxe
ORciscocisco_iosMatch3.10.5sxe
ORciscocisco_iosMatch3.10.6sxe
ORciscocisco_iosMatch3.10.1xcsxe
ORciscocisco_iosMatch3.10.2asxe
ORciscocisco_iosMatch3.10.2tsxe
ORciscocisco_iosMatch3.10.7sxe
ORciscocisco_iosMatch3.10.1xbsxe
ORciscocisco_iosMatch3.10.8sxe
ORciscocisco_iosMatch3.10.8asxe
ORciscocisco_iosMatch3.10.9sxe
ORciscocisco_iosMatch3.10.10sxe
ORciscocisco_iosMatch3.11.1sxe
ORciscocisco_iosMatch3.11.2sxe
ORciscocisco_iosMatch3.11.0sxe
ORciscocisco_iosMatch3.11.3sxe
ORciscocisco_iosMatch3.11.4sxe
ORciscocisco_iosMatch3.12.0sxe
ORciscocisco_iosMatch3.12.1sxe
ORciscocisco_iosMatch3.12.2sxe
ORciscocisco_iosMatch3.12.3sxe
ORciscocisco_iosMatch3.12.0asxe
ORciscocisco_iosMatch3.12.4sxe
ORciscocisco_iosMatch3.13.0sxe
ORciscocisco_iosMatch3.13.1sxe
ORciscocisco_iosMatch3.13.2sxe
ORciscocisco_iosMatch3.13.3sxe
ORciscocisco_iosMatch3.13.4sxe
ORciscocisco_iosMatch3.13.5sxe
ORciscocisco_iosMatch3.13.2asxe
ORciscocisco_iosMatch3.13.0asxe
ORciscocisco_iosMatch3.13.5asxe
ORciscocisco_iosMatch3.13.6sxe
ORciscocisco_iosMatch3.13.7sxe
ORciscocisco_iosMatch3.13.6asxe
ORciscocisco_iosMatch3.13.6bsxe
ORciscocisco_iosMatch3.13.7asxe
ORciscocisco_iosMatch3.13.8sxe
ORciscocisco_iosMatch3.13.9sxe
ORciscocisco_iosMatch3.13.10sxe
ORciscocisco_iosMatch3.14.0sxe
ORciscocisco_iosMatch3.14.1sxe
ORciscocisco_iosMatch3.14.2sxe
ORciscocisco_iosMatch3.14.3sxe
ORciscocisco_iosMatch3.14.4sxe
ORciscocisco_iosMatch3.15.0sxe
ORciscocisco_iosMatch3.15.1sxe
ORciscocisco_iosMatch3.15.2sxe
ORciscocisco_iosMatch3.15.1csxe
ORciscocisco_iosMatch3.15.3sxe
ORciscocisco_iosMatch3.15.4sxe
ORciscocisco_iosMatch3.16.0sxe
ORciscocisco_iosMatch3.16.1sxe
ORciscocisco_iosMatch3.16.0asxe
ORciscocisco_iosMatch3.16.1asxe
ORciscocisco_iosMatch3.16.2sxe
ORciscocisco_iosMatch3.16.2asxe
ORciscocisco_iosMatch3.16.0bsxe
ORciscocisco_iosMatch3.16.0csxe
ORciscocisco_iosMatch3.16.3sxe
ORciscocisco_iosMatch3.16.2bsxe
ORciscocisco_iosMatch3.16.3asxe
ORciscocisco_iosMatch3.16.4sxe
ORciscocisco_iosMatch3.16.4asxe
ORciscocisco_iosMatch3.16.4bsxe
ORciscocisco_iosMatch3.16.4gsxe
ORciscocisco_iosMatch3.16.5sxe
ORciscocisco_iosMatch3.16.4csxe
ORciscocisco_iosMatch3.16.4dsxe
ORciscocisco_iosMatch3.16.4esxe
ORciscocisco_iosMatch3.16.6sxe
ORciscocisco_iosMatch3.16.5asxe
ORciscocisco_iosMatch3.16.5bsxe
ORciscocisco_iosMatch3.16.7sxe
ORciscocisco_iosMatch3.16.6bsxe
ORciscocisco_iosMatch3.16.7asxe
ORciscocisco_iosMatch3.16.7bsxe
ORciscocisco_iosMatch3.16.8sxe
ORciscocisco_iosMatch3.16.9sxe
ORciscocisco_iosMatch3.16.10sxe
ORciscocisco_iosMatch3.16.10asxe
ORciscocisco_iosMatch3.16.10bsxe
ORciscocisco_iosMatch3.17.0sxe
ORciscocisco_iosMatch3.17.1sxe
ORciscocisco_iosMatch3.17.2sxe
ORciscocisco_iosMatch3.17.1asxe
ORciscocisco_iosMatch3.17.3sxe
ORciscocisco_iosMatch3.17.4sxe
ORciscocisco_iosMatch16.1.1xe
ORciscocisco_iosMatch16.1.2xe
ORciscocisco_iosMatch16.1.3xe
ORciscocisco_iosMatch16.2.1xe
ORciscocisco_iosMatch16.2.2xe
ORciscocisco_iosMatch16.3.1xe
ORciscocisco_iosMatch16.3.2xe
ORciscocisco_iosMatch16.3.3xe
ORciscocisco_iosMatch16.3.1axe
ORciscocisco_iosMatch16.3.4xe
ORciscocisco_iosMatch16.3.5xe
ORciscocisco_iosMatch16.3.5bxe
ORciscocisco_iosMatch16.3.6xe
ORciscocisco_iosMatch16.3.7xe
ORciscocisco_iosMatch16.3.8xe
ORciscocisco_iosMatch16.3.9xe
ORciscocisco_iosMatch16.3.10xe
ORciscocisco_iosMatch16.3.11xe
ORciscocisco_iosMatch16.4.1xe
ORciscocisco_iosMatch16.4.2xe
ORciscocisco_iosMatch16.4.3xe
ORciscocisco_iosMatch16.5.1xe
ORciscocisco_iosMatch16.5.1axe
ORciscocisco_iosMatch16.5.1bxe
ORciscocisco_iosMatch16.5.2xe
ORciscocisco_iosMatch16.5.3xe
ORciscocisco_iosMatch3.18.0asxe
ORciscocisco_iosMatch3.18.0sxe
ORciscocisco_iosMatch3.18.1sxe
ORciscocisco_iosMatch3.18.2sxe
ORciscocisco_iosMatch3.18.3sxe
ORciscocisco_iosMatch3.18.4sxe
ORciscocisco_iosMatch3.18.0spxe
ORciscocisco_iosMatch3.18.1spxe
ORciscocisco_iosMatch3.18.1aspxe
ORciscocisco_iosMatch3.18.1gspxe
ORciscocisco_iosMatch3.18.1bspxe
ORciscocisco_iosMatch3.18.1cspxe
ORciscocisco_iosMatch3.18.2spxe
ORciscocisco_iosMatch3.18.1hspxe
ORciscocisco_iosMatch3.18.2aspxe
ORciscocisco_iosMatch3.18.1ispxe
ORciscocisco_iosMatch3.18.3spxe
ORciscocisco_iosMatch3.18.4spxe
ORciscocisco_iosMatch3.18.3aspxe
ORciscocisco_iosMatch3.18.3bspxe
ORciscocisco_iosMatch3.18.5spxe
ORciscocisco_iosMatch3.18.6spxe
ORciscocisco_iosMatch3.18.7spxe
ORciscocisco_iosMatch3.18.8aspxe
ORciscocisco_iosMatch3.18.9spxe
ORciscocisco_iosMatch16.6.1xe
ORciscocisco_iosMatch16.6.2xe
ORciscocisco_iosMatch16.6.3xe
ORciscocisco_iosMatch16.6.4xe
ORciscocisco_iosMatch16.6.5xe
ORciscocisco_iosMatch16.6.4sxe
ORciscocisco_iosMatch16.6.4axe
ORciscocisco_iosMatch16.6.5axe
ORciscocisco_iosMatch16.6.6xe
ORciscocisco_iosMatch16.6.5bxe
ORciscocisco_iosMatch16.6.7xe
ORciscocisco_iosMatch16.6.7axe
ORciscocisco_iosMatch16.6.8xe
ORciscocisco_iosMatch16.6.9xe
ORciscocisco_iosMatch16.6.10xe
ORciscocisco_iosMatch16.7.1xe
ORciscocisco_iosMatch16.7.1axe
ORciscocisco_iosMatch16.7.1bxe
ORciscocisco_iosMatch16.7.2xe
ORciscocisco_iosMatch16.7.3xe
ORciscocisco_iosMatch16.7.4xe
ORciscocisco_iosMatch16.8.1xe
ORciscocisco_iosMatch16.8.1axe
ORciscocisco_iosMatch16.8.1bxe
ORciscocisco_iosMatch16.8.1sxe
ORciscocisco_iosMatch16.8.1cxe
ORciscocisco_iosMatch16.8.1dxe
ORciscocisco_iosMatch16.8.2xe
ORciscocisco_iosMatch16.8.1exe
ORciscocisco_iosMatch16.8.3xe
ORciscocisco_iosMatch16.9.1xe
ORciscocisco_iosMatch16.9.2xe
ORciscocisco_iosMatch16.9.1axe
ORciscocisco_iosMatch16.9.1bxe
ORciscocisco_iosMatch16.9.1sxe
ORciscocisco_iosMatch16.9.1cxe
ORciscocisco_iosMatch16.9.1dxe
ORciscocisco_iosMatch16.9.3xe
ORciscocisco_iosMatch16.9.2axe
ORciscocisco_iosMatch16.9.2sxe
ORciscocisco_iosMatch16.9.3hxe
ORciscocisco_iosMatch16.9.4xe
ORciscocisco_iosMatch16.9.3sxe
ORciscocisco_iosMatch16.9.3axe
ORciscocisco_iosMatch16.9.4cxe
ORciscocisco_iosMatch16.9.5xe
ORciscocisco_iosMatch16.9.5fxe
ORciscocisco_iosMatch16.9.6xe
ORciscocisco_iosMatch16.9.7xe
ORciscocisco_iosMatch16.9.8xe
ORciscocisco_iosMatch16.10.1xe
ORciscocisco_iosMatch16.10.1axe
ORciscocisco_iosMatch16.10.1bxe
ORciscocisco_iosMatch16.10.1sxe
ORciscocisco_iosMatch16.10.1cxe
ORciscocisco_iosMatch16.10.1exe
ORciscocisco_iosMatch16.10.1dxe
ORciscocisco_iosMatch16.10.2xe
ORciscocisco_iosMatch16.10.1fxe
ORciscocisco_iosMatch16.10.1gxe
ORciscocisco_iosMatch16.10.3xe
ORciscocisco_iosMatch3.11.5exe
ORciscocisco_iosMatch17.6.1wxe
ORciscocisco_iosMatchanyxe
Related
cvelist
cvelist
cve
cve
CVE-2022-20694
2022-04-15 15:15:12
nvd
nvd
CVE-2022-20694
2022-04-15 15:15:12
prion
prion
Race condition
2022-04-15 15:15:00
nessus
nessus