Design/Logic Flaw

2023-03-2317:15:00

PRIOn knowledge base

www.prio-n.com

fragmentation handling

cisco ios xe software

remote attacker

denial of service

tunnel protocol

generic routing encapsulation

crafted fragmented packets

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.4%

JSON

A vulnerability in the fragmentation handling code of tunnel protocol packets in Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected system to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of large fragmented tunnel protocol packets. One example of a tunnel protocol is Generic Routing Encapsulation (GRE). An attacker could exploit this vulnerability by sending crafted fragmented packets to an affected system. A successful exploit could allow the attacker to cause the affected system to reload, resulting in a DoS condition. Note: Only traffic directed to the affected system can be used to exploit this vulnerability.

CPENameOperatorVersion
ios_xeeq17.9.1
ios_xeeq17.9.197
ios_xeeq17.9.1119

Name	Operator	Version
ios_xe	eq	17.9.1
ios_xe	eq	17.9.197
ios_xe	eq	17.9.1119

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ios-gre-crash-p6nE5Sq5