5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
7.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
A vulnerability in the data model interface (DMI) services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to access resources that should have been protected by a configured IPv4 access control list (ACL).
This vulnerability is due to improper handling of error conditions when a successfully authorized device administrator updates an IPv4 ACL using the NETCONF or RESTCONF protocol, and the update would reorder access control entries (ACEs) in the updated ACL. An attacker could exploit this vulnerability by accessing resources that should have been protected across an affected device.
[
{
"vendor": "Cisco",
"product": "Cisco IOS XE Software",
"versions": [
{
"version": "16.3.1",
"status": "affected"
},
{
"version": "16.3.2",
"status": "affected"
},
{
"version": "16.3.3",
"status": "affected"
},
{
"version": "16.3.1a",
"status": "affected"
},
{
"version": "16.3.4",
"status": "affected"
},
{
"version": "16.3.5",
"status": "affected"
},
{
"version": "16.3.5b",
"status": "affected"
},
{
"version": "16.3.6",
"status": "affected"
},
{
"version": "16.3.7",
"status": "affected"
},
{
"version": "16.3.8",
"status": "affected"
},
{
"version": "16.3.9",
"status": "affected"
},
{
"version": "16.3.10",
"status": "affected"
},
{
"version": "16.3.11",
"status": "affected"
},
{
"version": "16.4.1",
"status": "affected"
},
{
"version": "16.4.2",
"status": "affected"
},
{
"version": "16.4.3",
"status": "affected"
},
{
"version": "16.5.1",
"status": "affected"
},
{
"version": "16.5.1a",
"status": "affected"
},
{
"version": "16.5.1b",
"status": "affected"
},
{
"version": "16.5.2",
"status": "affected"
},
{
"version": "16.5.3",
"status": "affected"
},
{
"version": "16.6.1",
"status": "affected"
},
{
"version": "16.6.2",
"status": "affected"
},
{
"version": "16.6.3",
"status": "affected"
},
{
"version": "16.6.4",
"status": "affected"
},
{
"version": "16.6.5",
"status": "affected"
},
{
"version": "16.6.4a",
"status": "affected"
},
{
"version": "16.6.5a",
"status": "affected"
},
{
"version": "16.6.6",
"status": "affected"
},
{
"version": "16.6.7",
"status": "affected"
},
{
"version": "16.6.8",
"status": "affected"
},
{
"version": "16.6.9",
"status": "affected"
},
{
"version": "16.6.10",
"status": "affected"
},
{
"version": "16.7.1",
"status": "affected"
},
{
"version": "16.7.2",
"status": "affected"
},
{
"version": "16.7.3",
"status": "affected"
},
{
"version": "16.8.1",
"status": "affected"
},
{
"version": "16.8.1a",
"status": "affected"
},
{
"version": "16.8.1b",
"status": "affected"
},
{
"version": "16.8.1s",
"status": "affected"
},
{
"version": "16.8.1c",
"status": "affected"
},
{
"version": "16.8.2",
"status": "affected"
},
{
"version": "16.8.3",
"status": "affected"
},
{
"version": "16.9.1",
"status": "affected"
},
{
"version": "16.9.2",
"status": "affected"
},
{
"version": "16.9.1a",
"status": "affected"
},
{
"version": "16.9.1b",
"status": "affected"
},
{
"version": "16.9.1s",
"status": "affected"
},
{
"version": "16.9.3",
"status": "affected"
},
{
"version": "16.9.4",
"status": "affected"
},
{
"version": "16.9.3a",
"status": "affected"
},
{
"version": "16.9.5",
"status": "affected"
},
{
"version": "16.9.5f",
"status": "affected"
},
{
"version": "16.9.6",
"status": "affected"
},
{
"version": "16.9.7",
"status": "affected"
},
{
"version": "16.9.8",
"status": "affected"
},
{
"version": "16.10.1",
"status": "affected"
},
{
"version": "16.10.1a",
"status": "affected"
},
{
"version": "16.10.1b",
"status": "affected"
},
{
"version": "16.10.1s",
"status": "affected"
},
{
"version": "16.10.1e",
"status": "affected"
},
{
"version": "16.10.2",
"status": "affected"
},
{
"version": "16.10.3",
"status": "affected"
},
{
"version": "16.11.1",
"status": "affected"
},
{
"version": "16.11.1a",
"status": "affected"
},
{
"version": "16.11.1b",
"status": "affected"
},
{
"version": "16.11.2",
"status": "affected"
},
{
"version": "16.11.1s",
"status": "affected"
},
{
"version": "16.12.1",
"status": "affected"
},
{
"version": "16.12.1s",
"status": "affected"
},
{
"version": "16.12.1a",
"status": "affected"
},
{
"version": "16.12.1c",
"status": "affected"
},
{
"version": "16.12.2",
"status": "affected"
},
{
"version": "16.12.2a",
"status": "affected"
},
{
"version": "16.12.3",
"status": "affected"
},
{
"version": "16.12.8",
"status": "affected"
},
{
"version": "16.12.2s",
"status": "affected"
},
{
"version": "16.12.1t",
"status": "affected"
},
{
"version": "16.12.4",
"status": "affected"
},
{
"version": "16.12.3s",
"status": "affected"
},
{
"version": "16.12.3a",
"status": "affected"
},
{
"version": "16.12.4a",
"status": "affected"
},
{
"version": "16.12.5",
"status": "affected"
},
{
"version": "16.12.6",
"status": "affected"
},
{
"version": "16.12.5a",
"status": "affected"
},
{
"version": "16.12.5b",
"status": "affected"
},
{
"version": "16.12.6a",
"status": "affected"
},
{
"version": "16.12.7",
"status": "affected"
},
{
"version": "16.12.9",
"status": "affected"
},
{
"version": "16.12.10",
"status": "affected"
},
{
"version": "16.12.10a",
"status": "affected"
},
{
"version": "16.12.11",
"status": "affected"
},
{
"version": "17.1.1",
"status": "affected"
},
{
"version": "17.1.1a",
"status": "affected"
},
{
"version": "17.1.1s",
"status": "affected"
},
{
"version": "17.1.1t",
"status": "affected"
},
{
"version": "17.1.3",
"status": "affected"
},
{
"version": "17.2.1",
"status": "affected"
},
{
"version": "17.2.1r",
"status": "affected"
},
{
"version": "17.2.1a",
"status": "affected"
},
{
"version": "17.2.1v",
"status": "affected"
},
{
"version": "17.2.2",
"status": "affected"
},
{
"version": "17.2.3",
"status": "affected"
},
{
"version": "17.3.1",
"status": "affected"
},
{
"version": "17.3.2",
"status": "affected"
},
{
"version": "17.3.3",
"status": "affected"
},
{
"version": "17.3.1a",
"status": "affected"
},
{
"version": "17.3.2a",
"status": "affected"
},
{
"version": "17.3.4",
"status": "affected"
},
{
"version": "17.3.5",
"status": "affected"
},
{
"version": "17.3.4a",
"status": "affected"
},
{
"version": "17.3.6",
"status": "affected"
},
{
"version": "17.3.4b",
"status": "affected"
},
{
"version": "17.3.4c",
"status": "affected"
},
{
"version": "17.3.5a",
"status": "affected"
},
{
"version": "17.3.5b",
"status": "affected"
},
{
"version": "17.3.7",
"status": "affected"
},
{
"version": "17.3.8",
"status": "affected"
},
{
"version": "17.3.8a",
"status": "affected"
},
{
"version": "17.4.1",
"status": "affected"
},
{
"version": "17.4.2",
"status": "affected"
},
{
"version": "17.4.1a",
"status": "affected"
},
{
"version": "17.4.1b",
"status": "affected"
},
{
"version": "17.4.2a",
"status": "affected"
},
{
"version": "17.5.1",
"status": "affected"
},
{
"version": "17.5.1a",
"status": "affected"
},
{
"version": "17.6.1",
"status": "affected"
},
{
"version": "17.6.2",
"status": "affected"
},
{
"version": "17.6.1a",
"status": "affected"
},
{
"version": "17.6.3",
"status": "affected"
},
{
"version": "17.6.3a",
"status": "affected"
},
{
"version": "17.6.4",
"status": "affected"
},
{
"version": "17.6.5",
"status": "affected"
},
{
"version": "17.6.6",
"status": "affected"
},
{
"version": "17.6.6a",
"status": "affected"
},
{
"version": "17.6.5a",
"status": "affected"
},
{
"version": "17.7.1",
"status": "affected"
},
{
"version": "17.7.1a",
"status": "affected"
},
{
"version": "17.7.1b",
"status": "affected"
},
{
"version": "17.7.2",
"status": "affected"
},
{
"version": "17.10.1",
"status": "affected"
},
{
"version": "17.10.1a",
"status": "affected"
},
{
"version": "17.10.1b",
"status": "affected"
},
{
"version": "17.8.1",
"status": "affected"
},
{
"version": "17.8.1a",
"status": "affected"
},
{
"version": "17.9.1",
"status": "affected"
},
{
"version": "17.9.2",
"status": "affected"
},
{
"version": "17.9.1a",
"status": "affected"
},
{
"version": "17.9.3",
"status": "affected"
},
{
"version": "17.9.2a",
"status": "affected"
},
{
"version": "17.9.3a",
"status": "affected"
},
{
"version": "17.9.4",
"status": "affected"
},
{
"version": "17.9.4a",
"status": "affected"
},
{
"version": "17.11.1",
"status": "affected"
},
{
"version": "17.11.1a",
"status": "affected"
},
{
"version": "17.12.1",
"status": "affected"
},
{
"version": "17.12.1a",
"status": "affected"
},
{
"version": "17.12.2",
"status": "affected"
},
{
"version": "17.12.2a",
"status": "affected"
},
{
"version": "17.11.99SW",
"status": "affected"
}
]
}
]
5.8 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
7.2 High
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%