Want relief keeping up with product patching, upgrades, and more? Learn how our Managed Services for law firms can help you.
CISCO IOS and IOS XE Software Vulnerabilities
March 2024
Please see CISCO IOS and IOS-XE software vulnerabilities below.
Identified Vulnerabilities
Product − Cisco IOS and IOS XE Software
- Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities (CVE-2024-20307)
- Multiple vulnerabilities in the Internet Key Exchange version 1 (IKEv1) fragmentation feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow or corruption on an affected system.
- Cisco IOS and IOS XE Software IKEv1 Fragmentation Heap Underflow Denial of Service Vulnerability (CVE-2024-20308)
- A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap underflow, resulting in an affected device reloading.
- Cisco IOS and IOS XE Software Locator ID Separation Protocol Denial of Service Vulnerability (CVE-2024-20311)
- A vulnerability in the Locator ID Separation Protocol (LISP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload.
- Cisco IOS and IOS XE Software Intermediate System-to-Intermediate System Denial of Service Vulnerability (CVE-2024-20312)
- A vulnerability in the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
- Cisco IOS XE Software OSPFv2 Denial of Service Vulnerability (CVE-2024-20313)
- A vulnerability in the OSPF version 2 (OSPFv2) feature of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition.
Product: Cisco IOS XE Software
- Cisco IOS XE Software DHCP Snooping with Endpoint Analytics Denial of Service Vulnerability (CVE-2024-20259)
- A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition.
- Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability (CVE-2024-20314)
- A vulnerability in the IPv4 Software-Defined Access (SD-Access) fabric edge node feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause high CPU utilization and stop all traffic processing, resulting in a denial of service (DoS) condition on an affected device.
- Cisco IOS Software for Catalyst 6000 Series Switches Denial of Service Vulnerability (CVE-2024-20276)
- A vulnerability in Cisco IOS Software for Cisco Catalyst 6000 Series Switches could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly.
Patch and Upgrade Available
Cisco has released free software updates that address the vulnerabilities described in this advisory. Customers with service contracts that entitle them to regular software updates should obtain security fixes through their Updates Channel.
Sources
Contact Cornerstone.IT for assistance with this or any other technology or security needs.