17.4.1

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

cisco

NVD

Published: 2020-09-24

Updated: 2023-11-07

Summary

A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a device to reload. The vulnerability is due to incorrect handling of certain valid, but not typical, Ethernet frames. An attacker could exploit this vulnerability by sending the Ethernet frames onto the Ethernet segment. A successful exploit could allow the attacker to cause the device to reload, resulting in a denial of service (DoS) condition.

Vulnerable Configurations

Part	Description	Count
OS	Cisco Cisco IOS XE 16.6.9 Cisco IOS XE 17.4.1	2
Hardware	Cisco Cisco 1100 4P - Cisco 1100 8P - Cisco 1100 Terminal Services Gateways - Cisco 1101 4P - Cisco 1109 2P - Cisco 1109 4P - Cisco 1111X 8P - Cisco 4221 Integrated Services Router - Cisco 4331 Integrated Services Router - Cisco 4431 Integrated Services Router - Cisco 4461 Integrated Services Router - Cisco 9800 CL - Cisco 9800 L - Cisco CSR 1000V - Cisco Esr6300 - Cisco IR 1101 - Cisco Isrv - Cisco Vg400 -	18

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-le-drTOB625