A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a crafted IPv4 DHCP request packet being mishandled when endpoint analytics are enabled. An attacker could exploit this vulnerability by sending a crafted DHCP request through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. Note: The attack vector is listed as network because a DHCP relay anywhere on the network could allow exploits from networks other than the adjacent one.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HCisco Catalyst 9100
HWCiscowszystkie wersjeCisco Catalyst 9105
HWCiscowszystkie wersjeCisco Catalyst 9105ax
HWCiscowszystkie wersjeCisco Catalyst 9105axi
HWCiscowszystkie wersjeCisco Catalyst 9105axw
HWCiscowszystkie wersjeCisco Catalyst 9105i
HWCiscowszystkie wersjeCisco Catalyst 9105w
HWCiscowszystkie wersjeCisco Catalyst 9115
HWCiscowszystkie wersjeCisco Catalyst 9115 Ap
HWCiscowszystkie wersjeCisco Catalyst 9115ax
HWCiscowszystkie wersjeCisco Catalyst 9115axe
HWCiscowszystkie wersjeCisco Catalyst 9115axi
HWCiscowszystkie wersjeCisco Catalyst 9117
HWCiscowszystkie wersjeCisco Catalyst 9117 Ap
HWCiscowszystkie wersjeCisco Catalyst 9117ax
HWCiscowszystkie wersjeCisco Catalyst 9117axi
HWCiscowszystkie wersjeCisco Catalyst 9120
HWCiscowszystkie wersjeCisco Catalyst 9120 Ap
HWCiscowszystkie wersjeCisco Catalyst 9120ax
HWCiscowszystkie wersjeCisco Catalyst 9120axe
HWCiscowszystkie wersjeCisco IOS XE
OSCisco17.10.117.10.1a17.10.1b17.1.117.11.117.11.1a17.11.99sw17.1.1a17.1.1s17.1.1t17.12.117.12.1a17.12.1w17.1.317.2.1+ 65 więcej
Powiązane podatności
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in...
A vulnerability in the quality of service (QoS) subsystem of Cisco IOS Software and Cisco IOS XE Software coul...
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE S...
RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP
Cisco IOS XE WLC — nieuwierzytelniony upload plików i RCE przez hardcoded JWT