ByteOS

Product:Catalyst 6800 Series Switches

Added At:03 Mar, 2022

Due At:24 Mar, 2022

Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability

A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a denial of service.

Used in Ransomware

Unknown

CWE

CWE-399

Required Action:

Apply updates per vendor instructions.

Additional Notes:

https://nvd.nist.gov/vuln/detail/CVE-2017-12238

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:cisco

Assigner Org ID:d1c1063e-7a18-46af-9102-31f8928bc633

Published At:28 Sep, 2017 | 07:00

Updated At:12 Jan, 2026 | 21:46

▼CVE Numbering Authority (CNA)

A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service (DoS) condition. The vulnerability is due to a memory management issue in the affected software. An attacker could exploit this vulnerability by creating a large number of VPLS-generated MAC entries in the MAC address table of an affected device. A successful exploit could allow the attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a DoS condition. This vulnerability affects Cisco Catalyst 6800 Series Switches that are running a vulnerable release of Cisco IOS Software and have a Cisco C6800-16P10G or C6800-16P10G-XL line card in use with Supervisor Engine 6T. To be vulnerable, the device must also be configured with VPLS and the C6800-16P10G or C6800-16P10G-XL line card needs to be the core-facing MPLS interfaces. Cisco Bug IDs: CSCva61927.

Affected Products

Vendor

n/a

Product

Cisco IOS

Versions

Affected

Cisco IOS

Problem Types

Type	CWE ID	Description
CWE	CWE-399	CWE-399

Type: CWE

CWE ID: CWE-399

Description: CWE-399

References

Hyperlink	Resource
http://www.securitytracker.com/id/1039453	vdb-entry x_refsource_SECTRACK
http://www.securityfocus.com/bid/101040	vdb-entry x_refsource_BID
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls	x_refsource_CONFIRM

Hyperlink: http://www.securitytracker.com/id/1039453

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.securityfocus.com/bid/101040

Resource:

vdb-entry

x_refsource_BID

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls

Resource:

x_refsource_CONFIRM

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
http://www.securitytracker.com/id/1039453	vdb-entry x_refsource_SECTRACK x_transferred
http://www.securityfocus.com/bid/101040	vdb-entry x_refsource_BID x_transferred
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls	x_refsource_CONFIRM x_transferred

Hyperlink: http://www.securitytracker.com/id/1039453

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://www.securityfocus.com/bid/101040

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls

Resource:

x_refsource_CONFIRM

x_transferred

2. CISA ADP Vulnrichment

Metrics

Version	Base score	Base severity	Vector
3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Metrics Other Info

kev

dateAdded:

2022-03-03

reference:

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12238

References

Hyperlink	Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12238	government-resource

Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12238

Resource:

government-resource

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:psirt@cisco.com

Published At:29 Sep, 2017 | 01:34

Updated At:12 Jan, 2026 | 22:16

CISA Catalog

Date Added	Due Date	Vulnerability Name	Required Action
2022-03-03	2022-03-24	Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability	Apply updates per vendor instructions.

Date Added: 2022-03-03

Due Date: 2022-03-24

Vulnerability Name: Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability

Required Action: Apply updates per vendor instructions.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Secondary	3.1	6.5	MEDIUM	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	3.3	LOW	AV:A/AC:L/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 3.3

Base severity: LOW

Vector:

AV:A/AC:L/Au:N/C:N/I:N/A:P

CPE Matches

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

>>ios>>Versions from 15.0(inclusive) to 15.4(inclusive)

cpe:2.3:h:cisco:c6800-16p10g:-:*:*:*:*:*:*:*

>>c6800-16p10g>>-

cpe:2.3:h:cisco:c6800-16p10g-xl:-:*:*:*:*:*:*:*

>>c6800-16p10g-xl>>-

cpe:2.3:h:cisco:catalyst_6000:-:*:*:*:*:*:*:*

>>catalyst_6000>>-

cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-1:2.2\(1a\):*:*:*:*:*:*:*

>>catalyst_6000_ws-svc-nam-1>>2.2\(1a\)

cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-1:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6000_ws-svc-nam-1>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-2:2.2\(1a\):*:*:*:*:*:*:*

>>catalyst_6000_ws-svc-nam-2>>2.2\(1a\)

cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-2:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6000_ws-svc-nam-2>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6000_ws-x6380-nam:2.1\(2\):*:*:*:*:*:*:*

>>catalyst_6000_ws-x6380-nam>>2.1\(2\)

cpe:2.3:h:cisco:catalyst_6000_ws-x6380-nam:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6000_ws-x6380-nam>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6500:-:*:*:*:*:*:*:*

>>catalyst_6500>>-

cpe:2.3:h:cisco:catalyst_6500-e:-:*:*:*:*:*:*:*

>>catalyst_6500-e>>-

cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:2.2\(1a\):*:*:*:*:*:*:*

>>catalyst_6500_ws-svc-nam-1>>2.2\(1a\)

cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6500_ws-svc-nam-1>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:2.2\(1a\):*:*:*:*:*:*:*

>>catalyst_6500_ws-svc-nam-2>>2.2\(1a\)

cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6500_ws-svc-nam-2>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:2.1\(2\):*:*:*:*:*:*:*

>>catalyst_6500_ws-x6380-nam>>2.1\(2\)

cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:3.1\(1a\):*:*:*:*:*:*:*

>>catalyst_6500_ws-x6380-nam>>3.1\(1a\)

cpe:2.3:h:cisco:catalyst_6503-e:-:*:*:*:*:*:*:*

>>catalyst_6503-e>>-

cpe:2.3:h:cisco:catalyst_6504-e:-:*:*:*:*:*:*:*

>>catalyst_6504-e>>-

cpe:2.3:h:cisco:catalyst_6506-e:-:*:*:*:*:*:*:*

>>catalyst_6506-e>>-

cpe:2.3:h:cisco:catalyst_6509-e:-:*:*:*:*:*:*:*

>>catalyst_6509-e>>-

cpe:2.3:h:cisco:catalyst_6509-neb-a:-:*:*:*:*:*:*:*

>>catalyst_6509-neb-a>>-

cpe:2.3:h:cisco:catalyst_6509-v-e:-:*:*:*:*:*:*:*

>>catalyst_6509-v-e>>-

cpe:2.3:h:cisco:catalyst_6513:-:*:*:*:*:*:*:*

>>catalyst_6513>>-

cpe:2.3:h:cisco:catalyst_6513-e:-:*:*:*:*:*:*:*

>>catalyst_6513-e>>-

Weaknesses

CWE ID	Type	Source
CWE-399	Secondary	psirt@cisco.com
NVD-CWE-noinfo	Primary	nvd@nist.gov

CWE ID: CWE-399

Type: Secondary

Source: psirt@cisco.com

CWE ID: NVD-CWE-noinfo

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/101040	psirt@cisco.com	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039453	psirt@cisco.com	Broken Link Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls	psirt@cisco.com	Vendor Advisory
http://www.securityfocus.com/bid/101040	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039453	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12238	134c704f-9b21-4f2e-91b3-4a467353bcc0	N/A

Hyperlink: http://www.securityfocus.com/bid/101040

Source: psirt@cisco.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.securitytracker.com/id/1039453

Source: psirt@cisco.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls

Source: psirt@cisco.com

Resource:

Vendor Advisory

Hyperlink: http://www.securityfocus.com/bid/101040

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.securitytracker.com/id/1039453

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-vpls

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Vendor Advisory

Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12238

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Resource: N/A

Similar CVEs

58Records found

CVE-2020-3429

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-7.4||HIGH

EPSS-0.13% / 32.84%

7 Day CHG~0.00%

Published-24 Sep, 2020 | 17:53

Updated-13 Nov, 2024 | 17:57

Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family WPA Denial of Service Vulnerability

A vulnerability in the WPA2 and WPA3 security implementation of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect packet processing during the WPA2 and WPA3 authentication handshake when configured for dot1x or pre-shared key (PSK) authentication key management (AKM) with 802.11r BSS Fast Transition (FT) enabled. An attacker could exploit this vulnerability by sending a crafted authentication packet to an affected device. A successful exploit could cause an affected device to reload, resulting in a DoS condition.

Product-ios_xe catalyst_9800-l catalyst_9800-40 catalyst_9300 catalyst_9800-cl catalyst_9800-80 catalyst_9400 catalyst_9500 Cisco IOS XE Software

CWE ID-CWE-20

Improper Input Validation

CVE-2020-3505

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.10% / 27.75%

7 Day CHG~0.00%

Published-26 Aug, 2020 | 16:15

Updated-13 Nov, 2024 | 18:12

Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Memory Leak Vulnerability

A vulnerability in the Cisco Discovery Protocol of Cisco Video Surveillance 8000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, which could lead to a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect processing of certain Cisco Discovery Protocol packets. An attacker could exploit this vulnerability by sending certain Cisco Discovery Protocol packets to an affected device. A successful exploit could allow the attacker to cause the affected device to continuously consume memory, which could cause the device to crash and reload, resulting in a DOS condition. Note: Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Product-8400_ip_camera_firmware 8630_ip_camera_firmware 8620_ip_camera 8000p_ip_camera_firmware 8930_speed_dome_ip_camera_firmware 8020_ip_camera 8400_ip_camera 8030_ip_camera_firmware 8070_ip_camera_firmware 8620_ip_camera_firmware 8070_ip_camera 8020_ip_camera_firmware 8000p_ip_camera 8930_speed_dome_ip_camera 8030_ip_camera 8630_ip_camera Cisco Video Surveillance 8000 Series IP Cameras

CWE ID-CWE-400

Uncontrolled Resource Consumption

CWE ID-CWE-401

Missing Release of Memory after Effective Lifetime

CVE-2020-3120

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-7.4||HIGH

EPSS-0.32% / 54.94%

7 Day CHG~0.00%

Published-05 Feb, 2020 | 17:50

Updated-15 Nov, 2024 | 17:42

Cisco FXOS, IOS XR, and NX-OS Software Cisco Discovery Protocol Denial of Service Vulnerability

A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to a missing check when the affected software processes Cisco Discovery Protocol messages. An attacker could exploit this vulnerability by sending a malicious Cisco Discovery Protocol packet to an affected device. A successful exploit could allow the attacker to exhaust system memory, causing the device to reload. Cisco Discovery Protocol is a Layer 2 protocol. To exploit this vulnerability, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Product-xrv_9000 firepower_9300 nexus_93180lc-ex firepower_4150 nexus_56128p nexus_3172tq ncs_540-28z4c-sys-d nx-os nexus_3636c-r nexus_93128tx nexus_9336pq_aci_spine ncs_5501-se ncs_6000 fxos asr_9006 mds_9506 ncs_540l nexus_3132q-v nexus_9332c nexus_92348gc-x nexus_3172tq-32t nexus_9336c-fx2 nexus_3524-x nexus_31108tc-v nexus_9348gc-fxp nexus_3172 mds_9718 nexus_9272q mds_9148s ncs_540-24z8q2c-sys mds_9513 mds_9148t ncs_540x-12z16g-sys-d nexus_93180yc-fx asr_9000v mds_9132t ncs_540x-16z4g8q2c-d firepower_4140 nexus_3432d-s ucs_manager ucs_6454 nexus_3524 mds_9216 ncs_540-12z20g-sys-a ncs_5002 nexus_3016 mds_9216a ucs_64108 nexus_92304qc ucs_6248up firepower_4125 nexus_3048 nexus_9372tx-e nexus_93360yc-fx2 nexus_3524-xl ucs_6324 nexus_9396tx firepower_4120 nexus_3232c_nexus_7000 nexus_3064 ncs_540-acc-sys nexus_5548up nexus_9396px mds_9216i nexus_5596t nexus_9372tx nexus_5624q asr_9906 nexus_3064-t nexus_3408-s nexus_9372px-e ncs_540x-12z16g-sys-a nexus_7700 asr_9901 ucs_6300 nexus_9332pq ncs_5001 nexus_93108tc-ex asr_9010 nexus_9508 nexus_93120tx firepower_4110 ncs_5516 nexus_1000ve crs ncs_540x-acc-sys firepower_4145 nexus_3548-xl nexus_31128pq nexus_9364c nexus_3164q nexus_3132c-z nexus_5548p ncs_540-12z20g-sys-d nexus_5648q ncs_5501 ncs_560 nexus_3464c nexus_93216tc-fx2 nexus_36180yc-r nexus_5672up asr_9001 nexus_3264q asr_9904 ncs_540x-16z4g8q2c-a nexus_34180yc nexus_9000v mds_9509 nexus_31108pc-v mds_9706 nexus_5596up firepower_4115 ncs_5502 nexus_3548 nexus_3132q nexus_9372px nexus_5696q nexus_92160yc-x nexus_9504 ncs_540-28z4c-sys-a nexus_93108tc-fx nexus_92300yc ios_xr ncs_5502-se ncs_5508 mds_9222i ucs_6296up ncs_5011 nexus_1000v firepower_extensible_operating_system nexus_3264c-e nexus_93240yc-fx2 nexus_3548-x asr_9910 nexus_3132q-xl mds_9710 asr_9912 asr_9922 nexus_3172tq-xl nexus_93180yc-ex nexus_9236c nexus_9516 nexus_3172pq-xl Cisco IOS XR Software

CWE ID-CWE-190

Integer Overflow or Wraparound

CVE-2017-3803

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-4.7||MEDIUM

EPSS-0.17% / 38.33%

7 Day CHG~0.00%

Published-26 Jan, 2017 | 07:45

Updated-20 Apr, 2025 | 01:37

A vulnerability in the Cisco IOS Software forwarding queue of Cisco 2960X and 3750X switches could allow an unauthenticated, adjacent attacker to cause a memory leak in the software forwarding queue that would eventually lead to a partial denial of service (DoS) condition. More Information: CSCva72252. Known Affected Releases: 15.2(2)E3 15.2(4)E1. Known Fixed Releases: 15.2(2)E6 15.2(4)E3 15.2(5)E1 15.2(5.3.28i)E1 15.2(6.0.49i)E 3.9(1)E.

Vendor-n/a Cisco Systems, Inc.

Product-ios Cisco IOS

CWE ID-CWE-772

Missing Release of Resource after Effective Lifetime

CVE-2021-34767

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-7.4||HIGH

EPSS-0.10% / 27.62%

7 Day CHG~0.00%

Published-23 Sep, 2021 | 02:26

Updated-30 Oct, 2025 | 21:14

Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers IPv6 Denial of Service Vulnerability

A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. The vulnerability is due to a logic error when processing specific link-local IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet that would flow inbound through the wired interface of an affected device. A successful exploit could allow the attacker to cause traffic drops in the affected VLAN, thus triggering the DoS condition.

Product-catalyst_9800-l-c ios_xe catalyst_9800-l catalyst_9800_embedded_wireless_controller catalyst_9800-80 catalyst_9800-l-f catalyst_9800-40 catalyst_9800 catalyst_9800-cl Cisco IOS XE Software

CWE ID-CWE-670

Always-Incorrect Control Flow Implementation

CVE-2018-0249

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-4.3||MEDIUM

EPSS-0.15% / 35.48%

7 Day CHG~0.00%

Published-02 May, 2018 | 22:00

Updated-29 Nov, 2024 | 15:13

A vulnerability when handling incoming 802.11 Association Requests for Cisco Aironet 1800 Series Access Point (APs) on Qualcomm Atheros (QCA) based hardware platforms could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system. A successful exploit could prevent new clients from joining the AP. The vulnerability is due to incorrect handling of malformed or invalid 802.11 Association Requests. An attacker could exploit this vulnerability by sending a malformed stream of 802.11 Association Requests to the local interface of the targeted device. A successful exploit could allow the attacker to cause a DoS situation on an affected system, causing new client 802.11 Association Requests to fail. This vulnerability affects the following Cisco products: Aironet 1560 Series Access Points, Aironet 1810 Series OfficeExtend Access Points, Aironet 1810w Series Access Points, Aironet 1815 Series Access Points, Aironet 1830 Series Access Points, Aironet 1850 Series Access Points, Aironet 2800 Series Access Points, Aironet 3800 Series Access Points. Cisco Bug IDs: CSCvg02116.

Vendor-n/a Cisco Systems, Inc.

Product-aironet_access_point_software Cisco Aironet 1800 Series Access Point

CWE ID-CWE-20

Improper Input Validation

CVE-2021-1621

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-7.4||HIGH

EPSS-0.09% / 24.84%

7 Day CHG~0.00%

Published-23 Sep, 2021 | 02:31

Updated-07 Nov, 2024 | 21:51

Cisco IOS XE Software Interface Queue Wedge Denial of Service Vulnerability

A vulnerability in the Layer 2 punt code of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a queue wedge on an interface that receives specific Layer 2 frames, resulting in a denial of service (DoS) condition. This vulnerability is due to improper handling of certain Layer 2 frames. An attacker could exploit this vulnerability by sending specific Layer 2 frames on the segment the router is connected to. A successful exploit could allow the attacker to cause a queue wedge on the interface, resulting in a DoS condition.

CWE ID-CWE-399

Not Available

CVE-2021-1596

Matching Score-8

Assigner-Cisco Systems, Inc.

Matching Score-8

Assigner-Cisco Systems, Inc.

CVSS Score-6.5||MEDIUM

EPSS-0.11% / 28.79%

7 Day CHG~0.00%

Published-08 Jul, 2021 | 18:35

Updated-07 Nov, 2024 | 22:06

Cisco Video Surveillance 7000 Series IP Cameras Link Layer Discovery Protocol Memory Leak Vulnerabilities

Multiple vulnerabilities in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Video Surveillance 7000 Series IP Cameras could allow an unauthenticated, adjacent attacker to cause a memory leak, which could lead to a denial of service (DoS) condition on an affected device. These vulnerabilities are due to incorrect processing of certain LLDP packets at ingress time. An attacker could exploit these vulnerabilities by sending crafted LLDP packets to an affected device. A successful exploit could allow the attacker to cause the affected device to continuously consume memory, which could cause the device to crash and reload, resulting in a DoS condition. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).