Lucene search

CiscoCISCO-SA-RATENAT-PYVLA7WM

HistorySep 22, 2021 - 4:00 p.m.

Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability

2021-09-2216:00:00

tools.cisco.com

0.002 Low

EPSS

Percentile

52.8%

JSON

A vulnerability in the Rate Limiting Network Address Translation (NAT) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause high CPU utilization in the Cisco QuantumFlow Processor of an affected device, resulting in a denial of service (DoS) condition.

This vulnerability is due to mishandling of the rate limiting feature within the QuantumFlow Processor. An attacker could exploit this vulnerability by sending large amounts of traffic that would be subject to NAT and rate limiting through an affected device. A successful exploit could allow the attacker to cause the QuantumFlow Processor utilization to reach 100 percent on the affected device, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ratenat-pYVLA7wM [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ratenat-pYVLA7wM”]

This advisory is part of the September 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: September 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication. [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74581”]

Affected configurations

Vulners

Node

ciscorvs4000_softwareMatch3.7s

ciscorvs4000_softwareMatch3.8s

ciscorvs4000_softwareMatch3.9s

ciscorvs4000_softwareMatch3.10s

ciscorvs4000_softwareMatch3.11s

ciscorvs4000_softwareMatch3.12s

ciscorvs4000_softwareMatch3.13s

ciscorvs4000_softwareMatch3.14s

ciscorvs4000_softwareMatch3.15s

ciscorvs4000_softwareMatch3.16s

ciscorvs4000_softwareMatch3.17s

ciscorvs4000_softwareMatch16.1

ciscorvs4000_softwareMatch16.2

ciscorvs4000_softwareMatch16.3

ciscorvs4000_softwareMatch16.4

ciscorvs4000_softwareMatch16.5

ciscorvs4000_softwareMatch3.18s

ciscorvs4000_softwareMatch3.18sp

ciscorvs4000_softwareMatch16.6

ciscorvs4000_softwareMatch16.7

ciscorvs4000_softwareMatch16.8

ciscorvs4000_softwareMatch16.9

ciscorvs4000_softwareMatch16.10

ciscorvs4000_softwareMatch16.11

ciscorvs4000_softwareMatch16.12

ciscorvs4000_softwareMatch17.1

ciscorvs4000_softwareMatch17.2

ciscorvs4000_softwareMatch17.3

ciscorvs4000_softwareMatch17.4

ciscorvs4000_softwareMatch17.5

ciscorvs4000_softwareMatchany

ciscorvs4000_softwareMatch3.7.0s

ciscorvs4000_softwareMatch3.7.1s

ciscorvs4000_softwareMatch3.7.2s

ciscorvs4000_softwareMatch3.7.3s

ciscorvs4000_softwareMatch3.7.4s

ciscorvs4000_softwareMatch3.7.5s

ciscorvs4000_softwareMatch3.7.6s

ciscorvs4000_softwareMatch3.7.7s

ciscorvs4000_softwareMatch3.7.8s

ciscorvs4000_softwareMatch3.7.4as

ciscorvs4000_softwareMatch3.7.2ts

ciscorvs4000_softwareMatch3.7.0xbs

ciscorvs4000_softwareMatch3.7.0bs

ciscorvs4000_softwareMatch3.7.0xas

ciscorvs4000_softwareMatch3.7.1as

ciscorvs4000_softwareMatch3.8.0s

ciscorvs4000_softwareMatch3.8.1s

ciscorvs4000_softwareMatch3.8.2s

ciscorvs4000_softwareMatch3.9.1s

ciscorvs4000_softwareMatch3.9.0s

ciscorvs4000_softwareMatch3.9.2s

ciscorvs4000_softwareMatch3.9.0xas

ciscorvs4000_softwareMatch3.9.1as

ciscorvs4000_softwareMatch3.9.0as

ciscorvs4000_softwareMatch3.10.0s

ciscorvs4000_softwareMatch3.10.1s

ciscorvs4000_softwareMatch3.10.2s

ciscorvs4000_softwareMatch3.10.3s

ciscorvs4000_softwareMatch3.10.4s

ciscorvs4000_softwareMatch3.10.5s

ciscorvs4000_softwareMatch3.10.6s

ciscorvs4000_softwareMatch3.10.1xcs

ciscorvs4000_softwareMatch3.10.2as

ciscorvs4000_softwareMatch3.10.2ts

ciscorvs4000_softwareMatch3.10.7s

ciscorvs4000_softwareMatch3.10.1xbs

ciscorvs4000_softwareMatch3.10.8s

ciscorvs4000_softwareMatch3.10.8as

ciscorvs4000_softwareMatch3.10.9s

ciscorvs4000_softwareMatch3.10.10s

ciscorvs4000_softwareMatch3.11.1s

ciscorvs4000_softwareMatch3.11.2s

ciscorvs4000_softwareMatch3.11.0s

ciscorvs4000_softwareMatch3.11.3s

ciscorvs4000_softwareMatch3.11.4s

ciscorvs4000_softwareMatch3.12.0s

ciscorvs4000_softwareMatch3.12.1s

ciscorvs4000_softwareMatch3.12.2s

ciscorvs4000_softwareMatch3.12.3s

ciscorvs4000_softwareMatch3.12.0as

ciscorvs4000_softwareMatch3.12.4s

ciscorvs4000_softwareMatch3.13.0s

ciscorvs4000_softwareMatch3.13.1s

ciscorvs4000_softwareMatch3.13.2s

ciscorvs4000_softwareMatch3.13.3s

ciscorvs4000_softwareMatch3.13.4s

ciscorvs4000_softwareMatch3.13.5s

ciscorvs4000_softwareMatch3.13.2as

ciscorvs4000_softwareMatch3.13.0as

ciscorvs4000_softwareMatch3.13.5as

ciscorvs4000_softwareMatch3.13.6s

ciscorvs4000_softwareMatch3.13.7s

ciscorvs4000_softwareMatch3.13.6as

ciscorvs4000_softwareMatch3.13.6bs

ciscorvs4000_softwareMatch3.13.7as

ciscorvs4000_softwareMatch3.13.8s

ciscorvs4000_softwareMatch3.13.9s

ciscorvs4000_softwareMatch3.13.10s

ciscorvs4000_softwareMatch3.14.0s

ciscorvs4000_softwareMatch3.14.1s

ciscorvs4000_softwareMatch3.14.2s

ciscorvs4000_softwareMatch3.14.3s

ciscorvs4000_softwareMatch3.14.4s

ciscorvs4000_softwareMatch3.15.0s

ciscorvs4000_softwareMatch3.15.1s

ciscorvs4000_softwareMatch3.15.2s

ciscorvs4000_softwareMatch3.15.1cs

ciscorvs4000_softwareMatch3.15.3s

ciscorvs4000_softwareMatch3.15.4s

ciscorvs4000_softwareMatch3.16.0s

ciscorvs4000_softwareMatch3.16.1s

ciscorvs4000_softwareMatch3.16.0as

ciscorvs4000_softwareMatch3.16.1as

ciscorvs4000_softwareMatch3.16.2s

ciscorvs4000_softwareMatch3.16.2as

ciscorvs4000_softwareMatch3.16.0bs

ciscorvs4000_softwareMatch3.16.0cs

ciscorvs4000_softwareMatch3.16.3s

ciscorvs4000_softwareMatch3.16.2bs

ciscorvs4000_softwareMatch3.16.3as

ciscorvs4000_softwareMatch3.16.4s

ciscorvs4000_softwareMatch3.16.4as

ciscorvs4000_softwareMatch3.16.4bs

ciscorvs4000_softwareMatch3.16.4gs

ciscorvs4000_softwareMatch3.16.5s

ciscorvs4000_softwareMatch3.16.4cs

ciscorvs4000_softwareMatch3.16.4ds

ciscorvs4000_softwareMatch3.16.4es

ciscorvs4000_softwareMatch3.16.6s

ciscorvs4000_softwareMatch3.16.5as

ciscorvs4000_softwareMatch3.16.5bs

ciscorvs4000_softwareMatch3.16.7s

ciscorvs4000_softwareMatch3.16.6bs

ciscorvs4000_softwareMatch3.16.7as

ciscorvs4000_softwareMatch3.16.7bs

ciscorvs4000_softwareMatch3.16.8s

ciscorvs4000_softwareMatch3.16.9s

ciscorvs4000_softwareMatch3.16.10s

ciscorvs4000_softwareMatch3.16.10as

ciscorvs4000_softwareMatch3.16.10bs

ciscorvs4000_softwareMatch3.17.0s

ciscorvs4000_softwareMatch3.17.1s

ciscorvs4000_softwareMatch3.17.2s

ciscorvs4000_softwareMatch3.17.1as

ciscorvs4000_softwareMatch3.17.3s

ciscorvs4000_softwareMatch3.17.4s

ciscorvs4000_softwareMatch16.1.1

ciscorvs4000_softwareMatch16.1.2

ciscorvs4000_softwareMatch16.1.3

ciscorvs4000_softwareMatch16.2.1

ciscorvs4000_softwareMatch16.2.2

ciscorvs4000_softwareMatch16.3.1

ciscorvs4000_softwareMatch16.3.2

ciscorvs4000_softwareMatch16.3.3

ciscorvs4000_softwareMatch16.3.1a

ciscorvs4000_softwareMatch16.3.4

ciscorvs4000_softwareMatch16.3.5

ciscorvs4000_softwareMatch16.3.5b

ciscorvs4000_softwareMatch16.3.6

ciscorvs4000_softwareMatch16.3.7

ciscorvs4000_softwareMatch16.3.8

ciscorvs4000_softwareMatch16.3.9

ciscorvs4000_softwareMatch16.3.10

ciscorvs4000_softwareMatch16.3.11

ciscorvs4000_softwareMatch16.4.1

ciscorvs4000_softwareMatch16.4.2

ciscorvs4000_softwareMatch16.4.3

ciscorvs4000_softwareMatch16.5.1

ciscorvs4000_softwareMatch16.5.1a

ciscorvs4000_softwareMatch16.5.1b

ciscorvs4000_softwareMatch16.5.2

ciscorvs4000_softwareMatch16.5.3

ciscorvs4000_softwareMatch3.18.0as

ciscorvs4000_softwareMatch3.18.0s

ciscorvs4000_softwareMatch3.18.1s

ciscorvs4000_softwareMatch3.18.2s

ciscorvs4000_softwareMatch3.18.3s

ciscorvs4000_softwareMatch3.18.4s

ciscorvs4000_softwareMatch3.18.0sp

ciscorvs4000_softwareMatch3.18.1sp

ciscorvs4000_softwareMatch3.18.1asp

ciscorvs4000_softwareMatch3.18.1gsp

ciscorvs4000_softwareMatch3.18.1bsp

ciscorvs4000_softwareMatch3.18.1csp

ciscorvs4000_softwareMatch3.18.2sp

ciscorvs4000_softwareMatch3.18.1hsp

ciscorvs4000_softwareMatch3.18.2asp

ciscorvs4000_softwareMatch3.18.1isp

ciscorvs4000_softwareMatch3.18.3sp

ciscorvs4000_softwareMatch3.18.4sp

ciscorvs4000_softwareMatch3.18.3asp

ciscorvs4000_softwareMatch3.18.3bsp

ciscorvs4000_softwareMatch3.18.5sp

ciscorvs4000_softwareMatch3.18.6sp

ciscorvs4000_softwareMatch3.18.7sp

ciscorvs4000_softwareMatch3.18.8asp

ciscorvs4000_softwareMatch3.18.9sp

ciscorvs4000_softwareMatch16.6.1

ciscorvs4000_softwareMatch16.6.2

ciscorvs4000_softwareMatch16.6.3

ciscorvs4000_softwareMatch16.6.4

ciscorvs4000_softwareMatch16.6.5

ciscorvs4000_softwareMatch16.6.4s

ciscorvs4000_softwareMatch16.6.4a

ciscorvs4000_softwareMatch16.6.5a

ciscorvs4000_softwareMatch16.6.6

ciscorvs4000_softwareMatch16.6.5b

ciscorvs4000_softwareMatch16.6.7

ciscorvs4000_softwareMatch16.6.7a

ciscorvs4000_softwareMatch16.6.8

ciscorvs4000_softwareMatch16.6.9

ciscorvs4000_softwareMatch16.7.1

ciscorvs4000_softwareMatch16.7.1a

ciscorvs4000_softwareMatch16.7.1b

ciscorvs4000_softwareMatch16.7.2

ciscorvs4000_softwareMatch16.7.3

ciscorvs4000_softwareMatch16.7.4

ciscorvs4000_softwareMatch16.8.1

ciscorvs4000_softwareMatch16.8.1a

ciscorvs4000_softwareMatch16.8.1b

ciscorvs4000_softwareMatch16.8.1s

ciscorvs4000_softwareMatch16.8.1c

ciscorvs4000_softwareMatch16.8.1d

ciscorvs4000_softwareMatch16.8.2

ciscorvs4000_softwareMatch16.8.1e

ciscorvs4000_softwareMatch16.8.3

ciscorvs4000_softwareMatch16.9.1

ciscorvs4000_softwareMatch16.9.2

ciscorvs4000_softwareMatch16.9.1a

ciscorvs4000_softwareMatch16.9.1b

ciscorvs4000_softwareMatch16.9.1s

ciscorvs4000_softwareMatch16.9.1c

ciscorvs4000_softwareMatch16.9.1d

ciscorvs4000_softwareMatch16.9.3

ciscorvs4000_softwareMatch16.9.2a

ciscorvs4000_softwareMatch16.9.2s

ciscorvs4000_softwareMatch16.9.3h

ciscorvs4000_softwareMatch16.9.4

ciscorvs4000_softwareMatch16.9.3s

ciscorvs4000_softwareMatch16.9.3a

ciscorvs4000_softwareMatch16.9.4c

ciscorvs4000_softwareMatch16.9.5

ciscorvs4000_softwareMatch16.9.5f

ciscorvs4000_softwareMatch16.9.6

ciscorvs4000_softwareMatch16.9.7

ciscorvs4000_softwareMatch16.10.1

ciscorvs4000_softwareMatch16.10.1a

ciscorvs4000_softwareMatch16.10.1b

ciscorvs4000_softwareMatch16.10.1s

ciscorvs4000_softwareMatch16.10.1c

ciscorvs4000_softwareMatch16.10.1e

ciscorvs4000_softwareMatch16.10.1d

ciscorvs4000_softwareMatch16.10.2

ciscorvs4000_softwareMatch16.10.1f

ciscorvs4000_softwareMatch16.10.1g

ciscorvs4000_softwareMatch16.10.3

ciscorvs4000_softwareMatch16.11.1

ciscorvs4000_softwareMatch16.11.1a

ciscorvs4000_softwareMatch16.11.1b

ciscorvs4000_softwareMatch16.11.2

ciscorvs4000_softwareMatch16.11.1s

ciscorvs4000_softwareMatch16.11.1c

ciscorvs4000_softwareMatch16.12.1

ciscorvs4000_softwareMatch16.12.1s

ciscorvs4000_softwareMatch16.12.1a

ciscorvs4000_softwareMatch16.12.1c

ciscorvs4000_softwareMatch16.12.1w

ciscorvs4000_softwareMatch16.12.2

ciscorvs4000_softwareMatch16.12.1y

ciscorvs4000_softwareMatch16.12.2a

ciscorvs4000_softwareMatch16.12.3

ciscorvs4000_softwareMatch16.12.2s

ciscorvs4000_softwareMatch16.12.1x

ciscorvs4000_softwareMatch16.12.1t

ciscorvs4000_softwareMatch16.12.2t

ciscorvs4000_softwareMatch16.12.4

ciscorvs4000_softwareMatch16.12.3s

ciscorvs4000_softwareMatch16.12.1z

ciscorvs4000_softwareMatch16.12.3a

ciscorvs4000_softwareMatch16.12.4a

ciscorvs4000_softwareMatch16.12.5

ciscorvs4000_softwareMatch16.12.1z1

ciscorvs4000_softwareMatch16.12.5a

ciscorvs4000_softwareMatch16.12.5b

ciscorvs4000_softwareMatch16.12.1z2

ciscorvs4000_softwareMatch17.1.1

ciscorvs4000_softwareMatch17.1.1a

ciscorvs4000_softwareMatch17.1.1s

ciscorvs4000_softwareMatch17.1.2

ciscorvs4000_softwareMatch17.1.1t

ciscorvs4000_softwareMatch17.1.3

ciscorvs4000_softwareMatch17.2.1

ciscorvs4000_softwareMatch17.2.1r

ciscorvs4000_softwareMatch17.2.1a

ciscorvs4000_softwareMatch17.2.1v

ciscorvs4000_softwareMatch17.2.2

ciscorvs4000_softwareMatch17.2.3

ciscorvs4000_softwareMatch17.3.1

ciscorvs4000_softwareMatch17.3.2

ciscorvs4000_softwareMatch17.3.3

ciscorvs4000_softwareMatch17.3.1a

ciscorvs4000_softwareMatch17.3.1w

ciscorvs4000_softwareMatch17.3.2a

ciscorvs4000_softwareMatch17.3.1x

ciscorvs4000_softwareMatch17.3.1z

ciscorvs4000_softwareMatch17.3.3a

ciscorvs4000_softwareMatch17.4.1

ciscorvs4000_softwareMatch17.4.1a

ciscorvs4000_softwareMatch17.4.1b

ciscorvs4000_softwareMatch17.4.1c

ciscorvs4000_softwareMatch17.5.1

ciscorvs4000_softwareMatch17.5.1a

ciscorvs4000_softwareMatch17.5.1b

ciscorvs4000_softwareMatchany

CPENameOperatorVersion
cisco ios xe softwareeq3.7S
cisco ios xe softwareeq3.8S
cisco ios xe softwareeq3.9S
cisco ios xe softwareeq3.10S
cisco ios xe softwareeq3.11S
cisco ios xe softwareeq3.12S
cisco ios xe softwareeq3.13S
cisco ios xe softwareeq3.14S
cisco ios xe softwareeq3.15S
cisco ios xe softwareeq3.16S

Name	Operator	Version
cisco ios xe software	eq	3.7S
cisco ios xe software	eq	3.8S
cisco ios xe software	eq	3.9S
cisco ios xe software	eq	3.10S
cisco ios xe software	eq	3.11S
cisco ios xe software	eq	3.12S
cisco ios xe software	eq	3.13S
cisco ios xe software	eq	3.14S
cisco ios xe software	eq	3.15S
cisco ios xe software	eq	3.16S