Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-IPSLA-JW2DJMSV
HistorySep 24, 2020 - 4:00 p.m.

Cisco IOS XE Software IP Service Level Agreements Denial of Service Vulnerability

2020-09-2416:00:00
tools.cisco.com
32
cisco
ios xe
software
ip service level agreements
denial of service
vulnerability

EPSS

0.002

Percentile

52.6%

JSON

A vulnerability in the IP Service Level Agreement (SLA) responder feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the IP SLA responder to reuse an existing port, resulting in a denial of service (DoS) condition.

The vulnerability exists because the IP SLA responder could consume a port that could be used by another feature. An attacker could exploit this vulnerability by sending specific IP SLA control packets to the IP SLA responder on an affected device. The control packets must include the port number that could be used by another configured feature. A successful exploit could allow the attacker to cause an in-use port to be consumed by the IP SLA responder, impacting the feature that was using the port and resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-jw2DJmSv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-jw2DJmSv”]

This advisory is part of the September 24, 2020, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 25 Cisco Security Advisories that describe 34 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2020 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74268”].

Affected configurations

Vulners
Node
ciscocisco_ios_xe_softwareMatch16.3
OR
ciscocisco_ios_xe_softwareMatch16.4
OR
ciscocisco_ios_xe_softwareMatch16.5
OR
ciscocisco_ios_xe_softwareMatch3.18sp
OR
ciscocisco_ios_xe_softwareMatch16.6
OR
ciscocisco_ios_xe_softwareMatch16.7
OR
ciscocisco_ios_xe_softwareMatch16.8
OR
ciscocisco_ios_xe_softwareMatch16.9
OR
ciscocisco_ios_xe_softwareMatch16.10
OR
ciscocisco_ios_xe_softwareMatch16.11
OR
ciscocisco_ios_xe_softwareMatch16.12
OR
ciscocisco_ios_xe_softwareMatch17.1
OR
ciscocisco_ios_xe_softwareMatch17.2
OR
ciscocisco_ios_xe_softwareMatchany
OR
ciscocisco_ios_xe_softwareMatch16.3.4
OR
ciscocisco_ios_xe_softwareMatch16.3.5
OR
ciscocisco_ios_xe_softwareMatch16.3.5b
OR
ciscocisco_ios_xe_softwareMatch16.3.6
OR
ciscocisco_ios_xe_softwareMatch16.3.7
OR
ciscocisco_ios_xe_softwareMatch16.3.8
OR
ciscocisco_ios_xe_softwareMatch16.3.9
OR
ciscocisco_ios_xe_softwareMatch16.3.10
OR
ciscocisco_ios_xe_softwareMatch16.4.1
OR
ciscocisco_ios_xe_softwareMatch16.4.2
OR
ciscocisco_ios_xe_softwareMatch16.4.3
OR
ciscocisco_ios_xe_softwareMatch16.5.1
OR
ciscocisco_ios_xe_softwareMatch16.5.1a
OR
ciscocisco_ios_xe_softwareMatch16.5.1b
OR
ciscocisco_ios_xe_softwareMatch16.5.2
OR
ciscocisco_ios_xe_softwareMatch16.5.3
OR
ciscocisco_ios_xe_softwareMatch3.18.1sp
OR
ciscocisco_ios_xe_softwareMatch3.18.1asp
OR
ciscocisco_ios_xe_softwareMatch3.18.1gsp
OR
ciscocisco_ios_xe_softwareMatch3.18.1bsp
OR
ciscocisco_ios_xe_softwareMatch3.18.1csp
OR
ciscocisco_ios_xe_softwareMatch3.18.2sp
OR
ciscocisco_ios_xe_softwareMatch3.18.1hsp
OR
ciscocisco_ios_xe_softwareMatch3.18.2asp
OR
ciscocisco_ios_xe_softwareMatch3.18.1isp
OR
ciscocisco_ios_xe_softwareMatch3.18.3sp
OR
ciscocisco_ios_xe_softwareMatch3.18.4sp
OR
ciscocisco_ios_xe_softwareMatch3.18.3asp
OR
ciscocisco_ios_xe_softwareMatch3.18.3bsp
OR
ciscocisco_ios_xe_softwareMatch3.18.5sp
OR
ciscocisco_ios_xe_softwareMatch3.18.6sp
OR
ciscocisco_ios_xe_softwareMatch3.18.7sp
OR
ciscocisco_ios_xe_softwareMatch3.18.8asp
OR
ciscocisco_ios_xe_softwareMatch3.18.9sp
OR
ciscocisco_ios_xe_softwareMatch16.6.1
OR
ciscocisco_ios_xe_softwareMatch16.6.2
OR
ciscocisco_ios_xe_softwareMatch16.6.3
OR
ciscocisco_ios_xe_softwareMatch16.6.4
OR
ciscocisco_ios_xe_softwareMatch16.6.5
OR
ciscocisco_ios_xe_softwareMatch16.6.4s
OR
ciscocisco_ios_xe_softwareMatch16.6.4a
OR
ciscocisco_ios_xe_softwareMatch16.6.5a
OR
ciscocisco_ios_xe_softwareMatch16.6.6
OR
ciscocisco_ios_xe_softwareMatch16.6.5b
OR
ciscocisco_ios_xe_softwareMatch16.6.7
OR
ciscocisco_ios_xe_softwareMatch16.6.7a
OR
ciscocisco_ios_xe_softwareMatch16.7.1
OR
ciscocisco_ios_xe_softwareMatch16.7.1a
OR
ciscocisco_ios_xe_softwareMatch16.7.1b
OR
ciscocisco_ios_xe_softwareMatch16.7.2
OR
ciscocisco_ios_xe_softwareMatch16.7.3
OR
ciscocisco_ios_xe_softwareMatch16.7.4
OR
ciscocisco_ios_xe_softwareMatch16.8.1
OR
ciscocisco_ios_xe_softwareMatch16.8.1a
OR
ciscocisco_ios_xe_softwareMatch16.8.1b
OR
ciscocisco_ios_xe_softwareMatch16.8.1s
OR
ciscocisco_ios_xe_softwareMatch16.8.1c
OR
ciscocisco_ios_xe_softwareMatch16.8.1d
OR
ciscocisco_ios_xe_softwareMatch16.8.2
OR
ciscocisco_ios_xe_softwareMatch16.8.1e
OR
ciscocisco_ios_xe_softwareMatch16.8.3
OR
ciscocisco_ios_xe_softwareMatch16.9.1
OR
ciscocisco_ios_xe_softwareMatch16.9.2
OR
ciscocisco_ios_xe_softwareMatch16.9.1a
OR
ciscocisco_ios_xe_softwareMatch16.9.1b
OR
ciscocisco_ios_xe_softwareMatch16.9.1s
OR
ciscocisco_ios_xe_softwareMatch16.9.1c
OR
ciscocisco_ios_xe_softwareMatch16.9.1d
OR
ciscocisco_ios_xe_softwareMatch16.9.3
OR
ciscocisco_ios_xe_softwareMatch16.9.2a
OR
ciscocisco_ios_xe_softwareMatch16.9.2s
OR
ciscocisco_ios_xe_softwareMatch16.9.3h
OR
ciscocisco_ios_xe_softwareMatch16.9.4
OR
ciscocisco_ios_xe_softwareMatch16.9.3s
OR
ciscocisco_ios_xe_softwareMatch16.9.3a
OR
ciscocisco_ios_xe_softwareMatch16.9.4c
OR
ciscocisco_ios_xe_softwareMatch16.9.5
OR
ciscocisco_ios_xe_softwareMatch16.9.5f
OR
ciscocisco_ios_xe_softwareMatch16.10.1
OR
ciscocisco_ios_xe_softwareMatch16.10.1a
OR
ciscocisco_ios_xe_softwareMatch16.10.1b
OR
ciscocisco_ios_xe_softwareMatch16.10.1s
OR
ciscocisco_ios_xe_softwareMatch16.10.1c
OR
ciscocisco_ios_xe_softwareMatch16.10.1e
OR
ciscocisco_ios_xe_softwareMatch16.10.1d
OR
ciscocisco_ios_xe_softwareMatch16.10.2
OR
ciscocisco_ios_xe_softwareMatch16.10.1f
OR
ciscocisco_ios_xe_softwareMatch16.10.1g
OR
ciscocisco_ios_xe_softwareMatch16.10.3
OR
ciscocisco_ios_xe_softwareMatch16.11.1
OR
ciscocisco_ios_xe_softwareMatch16.11.1a
OR
ciscocisco_ios_xe_softwareMatch16.11.1b
OR
ciscocisco_ios_xe_softwareMatch16.11.2
OR
ciscocisco_ios_xe_softwareMatch16.11.1s
OR
ciscocisco_ios_xe_softwareMatch16.11.1c
OR
ciscocisco_ios_xe_softwareMatch16.12.1
OR
ciscocisco_ios_xe_softwareMatch16.12.1s
OR
ciscocisco_ios_xe_softwareMatch16.12.1a
OR
ciscocisco_ios_xe_softwareMatch16.12.1c
OR
ciscocisco_ios_xe_softwareMatch16.12.1w
OR
ciscocisco_ios_xe_softwareMatch16.12.2
OR
ciscocisco_ios_xe_softwareMatch16.12.1y
OR
ciscocisco_ios_xe_softwareMatch16.12.2a
OR
ciscocisco_ios_xe_softwareMatch16.12.3
OR
ciscocisco_ios_xe_softwareMatch16.12.2s
OR
ciscocisco_ios_xe_softwareMatch16.12.1x
OR
ciscocisco_ios_xe_softwareMatch16.12.1t
OR
ciscocisco_ios_xe_softwareMatch16.12.2t
OR
ciscocisco_ios_xe_softwareMatch16.12.3a
OR
ciscocisco_ios_xe_softwareMatch17.1.1
OR
ciscocisco_ios_xe_softwareMatch17.1.1a
OR
ciscocisco_ios_xe_softwareMatch17.1.1s
OR
ciscocisco_ios_xe_softwareMatch17.1.1t
OR
ciscocisco_ios_xe_softwareMatch17.2.1
OR
ciscocisco_ios_xe_softwareMatch17.2.1r
OR
ciscocisco_ios_xe_softwareMatch17.2.1a
OR
ciscocisco_ios_xe_softwareMatchany
VendorProductVersionCPE
ciscocisco_ios_xe_software16.3cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.4cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.5cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:*:*:*:*:*:*:*
ciscocisco_ios_xe_software3.18spcpe:2.3:a:cisco:cisco_ios_xe_software:3.18sp:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.6cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.7cpe:2.3:a:cisco:cisco_ios_xe_software:16.7:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.8cpe:2.3:a:cisco:cisco_ios_xe_software:16.8:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.9cpe:2.3:a:cisco:cisco_ios_xe_software:16.9:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.10cpe:2.3:a:cisco:cisco_ios_xe_software:16.10:*:*:*:*:*:*:*
ciscocisco_ios_xe_software16.11cpe:2.3:a:cisco:cisco_ios_xe_software:16.11:*:*:*:*:*:*:*
Rows per page:
1-10 of 1301

Related

nvd 1
prion 1
cve 1
cvelist 1
nvd
nvd
CVE-2020-3422
2020-09-24 18:15:19
prion
prion
Race condition
2020-09-24 18:15:00
cve
cve
CVE-2020-3422
2020-09-24 18:15:19
cvelist
cvelist
CVE-2020-3422 Cisco IOS XE Software IP Service Level Agreements Denial of Service Vulnerability
2020-09-24 18:01:27

EPSS

0.002

Percentile

52.6%

JSON
Related for CISCO-SA-IPSLA-JW2DJMSV
nvd1prion1cve1cvelist1