ГлавнаяУязвимости → CVE-2024-20259
8.6высокая

CVE-2024-20259

Описание

A vulnerability in the DHCP snooping feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a crafted IPv4 DHCP request packet being mishandled when endpoint analytics are enabled. An attacker could exploit this vulnerability by sending a crafted DHCP request through an affected device. A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. Note: The attack vector is listed as network because a DHCP relay anywhere on the network could allow exploits from networks other than the adjacent one.

Затрагиваемое ПО
Cisco Ios xeCisco Catalyst 9100Cisco Catalyst 9105Cisco Catalyst 9105axCisco Catalyst 9105axiCisco Catalyst 9105axwCisco Catalyst 9105iCisco Catalyst 9105wCisco Catalyst 9115Cisco Catalyst 9115 apCisco Catalyst 9115axCisco Catalyst 9115axeCisco Catalyst 9115axiCisco Catalyst 9117Cisco Catalyst 9117 apCisco Catalyst 9117axCisco Catalyst 9117axiCisco Catalyst 9120Cisco Catalyst 9120 apCisco Catalyst 9120axCisco Catalyst 9120axeCisco Catalyst 9120axiCisco Catalyst 9120axpCisco Catalyst 9124Cisco Catalyst 9124ax
CVSS
Балл8.6 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Источники
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dhcp-dos-T3CXPO9zhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-dhcp-dos-T3CXPO9z