Unauthorized Frame Handling Could Cause DoS Condition
CVE-2024-20434
4.3MEDIUM
Summary
A vulnerability exists in Cisco IOS XE Software where improper handling of frames associated with VLAN tagging can be exploited by an unauthenticated, adjacent attacker. By sending specifically crafted frames, the attacker can induce a denial of service condition on the control plane of the affected device. This results in the device becoming unresponsive, with no access available through the console or CLI. Additionally, the affected device will not respond to ping or SNMP requests, as well as requests from other control plane protocols. It is important to note that data traffic is not affected; however, a complete reboot of the device is necessary to restore control plane operations.
References
CVSS V3.1
Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published