Vulnerabilities > CVE-2021-34793 - Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Cisco products

047910
CVSS 8.6 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
cisco
CWE-924
NVD
Published: 2021-10-27
Updated: 2023-11-07

Summary

A vulnerability in the TCP Normalizer of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software operating in transparent mode could allow an unauthenticated, remote attacker to poison MAC address tables, resulting in a denial of service (DoS) vulnerability. This vulnerability is due to incorrect handling of certain TCP segments when the affected device is operating in transparent mode. An attacker could exploit this vulnerability by sending a crafted TCP segment through an affected device. A successful exploit could allow the attacker to poison the MAC address tables in adjacent devices, resulting in network disruption.

Vulnerable Configurations

Part Description Count
Application
Cisco
205
OS
Cisco
122
Hardware
Cisco
8

Common Weakness Enumeration (CWE)

References