{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2024-20267", "ASSIGNER": "psirt@cisco.com", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. \r\n\r This vulnerability is due to lack of proper error checking when processing an ingress MPLS frame. An attacker could exploit this vulnerability by sending a crafted IPv6 packet that is encapsulated within an MPLS frame to an MPLS-enabled interface of the targeted device. A successful exploit could allow the attacker to cause a denial of service (DoS) condition.\r\n\r Note: The IPv6 packet can be generated multiple hops away from the targeted device and then encapsulated within MPLS. The DoS condition may occur when the NX-OS device processes the packet." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')", "cweId": "CWE-120" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Cisco", "product": { "product_data": [ { "product_name": "Cisco NX-OS Software", "version": { "version_data": [ { "version_affected": "=", "version_value": "6.0(2)A3(1)" }, { "version_affected": "=", "version_value": "6.0(2)A3(2)" }, { "version_affected": "=", "version_value": "6.0(2)A3(4)" }, { "version_affected": "=", "version_value": "6.0(2)A4(1)" }, { "version_affected": "=", "version_value": "6.0(2)A4(2)" }, { "version_affected": "=", "version_value": "6.0(2)A4(3)" }, { "version_affected": "=", "version_value": "6.0(2)A4(4)" }, { "version_affected": "=", "version_value": "6.0(2)A4(5)" }, { "version_affected": "=", "version_value": "6.0(2)A4(6)" }, { "version_affected": "=", "version_value": "6.0(2)A6(1)" }, { "version_affected": "=", "version_value": "6.0(2)A6(1a)" }, { "version_affected": "=", "version_value": "6.0(2)A6(2)" }, { "version_affected": "=", "version_value": "6.0(2)A6(2a)" }, { "version_affected": "=", "version_value": "6.0(2)A6(3)" }, { "version_affected": "=", "version_value": "6.0(2)A6(3a)" }, { "version_affected": "=", "version_value": "6.0(2)A6(4)" }, { "version_affected": "=", "version_value": "6.0(2)A6(4a)" }, { "version_affected": "=", "version_value": "6.0(2)A6(5)" }, { "version_affected": "=", "version_value": "6.0(2)A6(5a)" }, { "version_affected": "=", "version_value": "6.0(2)A6(5b)" }, { "version_affected": "=", "version_value": "6.0(2)A6(6)" }, { "version_affected": "=", "version_value": "6.0(2)A6(7)" }, { "version_affected": "=", "version_value": "6.0(2)A6(8)" }, { "version_affected": "=", "version_value": "6.0(2)A7(1)" }, { "version_affected": "=", "version_value": "6.0(2)A7(1a)" }, { "version_affected": "=", "version_value": "6.0(2)A7(2)" }, { "version_affected": "=", "version_value": "6.0(2)A7(2a)" }, { "version_affected": "=", "version_value": "6.0(2)A8(1)" }, { "version_affected": "=", "version_value": "6.0(2)A8(2)" }, { "version_affected": "=", "version_value": "6.0(2)A8(3)" }, { "version_affected": "=", "version_value": "6.0(2)A8(4)" }, { "version_affected": "=", "version_value": "6.0(2)A8(4a)" }, { "version_affected": "=", "version_value": "6.0(2)A8(5)" }, { "version_affected": "=", "version_value": "6.0(2)A8(6)" }, { "version_affected": "=", "version_value": "6.0(2)A8(7)" }, { "version_affected": "=", "version_value": "6.0(2)A8(7a)" }, { "version_affected": "=", "version_value": "6.0(2)A8(7b)" }, { "version_affected": "=", "version_value": "6.0(2)A8(8)" }, { "version_affected": "=", "version_value": "6.0(2)A8(9)" }, { "version_affected": "=", "version_value": "6.0(2)A8(10a)" }, { "version_affected": "=", "version_value": "6.0(2)A8(10)" }, { "version_affected": "=", "version_value": "6.0(2)A8(11)" }, { "version_affected": "=", "version_value": "6.0(2)A8(11a)" }, { "version_affected": "=", "version_value": "6.0(2)A8(11b)" }, { "version_affected": "=", "version_value": "6.0(2)U2(1)" }, { "version_affected": "=", "version_value": "6.0(2)U2(2)" }, { "version_affected": "=", "version_value": "6.0(2)U2(3)" }, { "version_affected": "=", "version_value": "6.0(2)U2(4)" }, { "version_affected": "=", "version_value": "6.0(2)U2(5)" }, { "version_affected": "=", "version_value": "6.0(2)U2(6)" }, { "version_affected": "=", "version_value": "6.0(2)U3(1)" }, { "version_affected": "=", "version_value": "6.0(2)U3(2)" }, { "version_affected": "=", "version_value": "6.0(2)U3(3)" }, { "version_affected": "=", "version_value": "6.0(2)U3(4)" }, { "version_affected": "=", "version_value": "6.0(2)U3(5)" }, { "version_affected": "=", "version_value": "6.0(2)U3(6)" }, { "version_affected": "=", "version_value": "6.0(2)U3(7)" }, { "version_affected": "=", "version_value": "6.0(2)U3(8)" }, { "version_affected": "=", "version_value": "6.0(2)U3(9)" }, { "version_affected": "=", "version_value": "6.0(2)U4(1)" }, { "version_affected": "=", "version_value": "6.0(2)U4(2)" }, { "version_affected": "=", "version_value": "6.0(2)U4(3)" }, { "version_affected": "=", "version_value": "6.0(2)U4(4)" }, { "version_affected": "=", "version_value": "6.0(2)U5(1)" }, { "version_affected": "=", "version_value": "6.0(2)U5(2)" }, { "version_affected": "=", "version_value": "6.0(2)U5(3)" }, { "version_affected": "=", "version_value": "6.0(2)U5(4)" }, { "version_affected": "=", "version_value": "6.0(2)U6(1)" }, { "version_affected": "=", "version_value": "6.0(2)U6(2)" }, { "version_affected": "=", "version_value": "6.0(2)U6(3)" }, { "version_affected": "=", "version_value": "6.0(2)U6(4)" }, { "version_affected": "=", "version_value": "6.0(2)U6(5)" }, { "version_affected": "=", "version_value": "6.0(2)U6(6)" }, { "version_affected": "=", "version_value": "6.0(2)U6(7)" }, { "version_affected": "=", "version_value": "6.0(2)U6(8)" }, { "version_affected": "=", "version_value": "6.0(2)U6(1a)" }, { "version_affected": "=", "version_value": "6.0(2)U6(2a)" }, { "version_affected": "=", "version_value": "6.0(2)U6(3a)" }, { "version_affected": "=", "version_value": "6.0(2)U6(4a)" }, { "version_affected": "=", "version_value": "6.0(2)U6(5a)" }, { "version_affected": "=", "version_value": "6.0(2)U6(5b)" }, { "version_affected": "=", "version_value": "6.0(2)U6(5c)" }, { "version_affected": "=", "version_value": "6.0(2)U6(9)" }, { "version_affected": "=", "version_value": "6.0(2)U6(10)" }, { "version_affected": "=", "version_value": "6.2(2)" }, { "version_affected": "=", "version_value": "6.2(2a)" }, { "version_affected": "=", "version_value": "6.2(6)" }, { "version_affected": "=", "version_value": "6.2(6b)" }, { "version_affected": "=", "version_value": "6.2(8)" }, { "version_affected": "=", "version_value": "6.2(8a)" }, { "version_affected": "=", "version_value": "6.2(8b)" }, { "version_affected": "=", "version_value": "6.2(10)" }, { "version_affected": "=", "version_value": "6.2(12)" }, { "version_affected": "=", "version_value": "6.2(18)" }, { "version_affected": "=", "version_value": "6.2(16)" }, { "version_affected": "=", "version_value": "6.2(14)" }, { "version_affected": "=", "version_value": "6.2(6a)" }, { "version_affected": "=", "version_value": "6.2(20)" }, { "version_affected": "=", "version_value": "6.2(20a)" }, { "version_affected": "=", "version_value": "6.2(22)" }, { "version_affected": "=", "version_value": "6.2(24)" }, { "version_affected": "=", "version_value": "6.2(24a)" }, { "version_affected": "=", "version_value": "7.0(3)F1(1)" }, { "version_affected": "=", "version_value": "7.0(3)F2(1)" }, { "version_affected": "=", "version_value": "7.0(3)F2(2)" }, { "version_affected": "=", "version_value": "7.0(3)F3(1)" }, { "version_affected": "=", "version_value": "7.0(3)F3(2)" }, { "version_affected": "=", "version_value": "7.0(3)F3(3)" }, { "version_affected": "=", "version_value": "7.0(3)F3(3a)" }, { "version_affected": "=", "version_value": "7.0(3)F3(4)" }, { "version_affected": "=", "version_value": "7.0(3)F3(3c)" }, { "version_affected": "=", "version_value": "7.0(3)F3(5)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2a)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2b)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2c)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2d)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2e)" }, { "version_affected": "=", "version_value": "7.0(3)I2(3)" }, { "version_affected": "=", "version_value": "7.0(3)I2(4)" }, { "version_affected": "=", "version_value": "7.0(3)I2(5)" }, { "version_affected": "=", "version_value": "7.0(3)I2(1)" }, { "version_affected": "=", "version_value": "7.0(3)I2(1a)" }, { "version_affected": "=", "version_value": "7.0(3)I2(2)" }, { "version_affected": "=", "version_value": "7.0(3)I3(1)" }, { "version_affected": "=", "version_value": "7.0(3)I4(1)" }, { "version_affected": "=", "version_value": "7.0(3)I4(2)" }, { "version_affected": "=", "version_value": "7.0(3)I4(3)" }, { "version_affected": "=", "version_value": "7.0(3)I4(4)" }, { "version_affected": "=", "version_value": "7.0(3)I4(5)" }, { "version_affected": "=", "version_value": "7.0(3)I4(6)" }, { "version_affected": "=", "version_value": "7.0(3)I4(7)" }, { "version_affected": "=", "version_value": "7.0(3)I4(8)" }, { "version_affected": "=", "version_value": "7.0(3)I4(8a)" }, { "version_affected": "=", "version_value": "7.0(3)I4(8b)" }, { "version_affected": "=", "version_value": "7.0(3)I4(8z)" }, { "version_affected": "=", "version_value": "7.0(3)I4(9)" }, { "version_affected": "=", "version_value": "7.0(3)I5(1)" }, { "version_affected": "=", "version_value": "7.0(3)I5(2)" }, { "version_affected": "=", "version_value": "7.0(3)I6(1)" }, { "version_affected": "=", "version_value": "7.0(3)I6(2)" }, { "version_affected": "=", "version_value": "7.0(3)I7(1)" }, { "version_affected": "=", "version_value": "7.0(3)I7(2)" }, { "version_affected": "=", "version_value": "7.0(3)I7(3)" }, { "version_affected": "=", "version_value": "7.0(3)I7(4)" }, { "version_affected": "=", "version_value": "7.0(3)I7(5)" }, { "version_affected": "=", "version_value": "7.0(3)I7(5a)" }, { "version_affected": "=", "version_value": "7.0(3)I7(6)" }, { "version_affected": "=", "version_value": "7.0(3)I7(7)" }, { "version_affected": "=", "version_value": "7.0(3)I7(8)" }, { "version_affected": "=", "version_value": "7.0(3)I7(9)" }, { "version_affected": "=", "version_value": "7.0(3)I7(10)" }, { "version_affected": "=", "version_value": "7.1(0)N1(1a)" }, { "version_affected": "=", "version_value": "7.1(0)N1(1b)" }, { "version_affected": "=", "version_value": "7.1(0)N1(1)" }, { "version_affected": "=", "version_value": "7.1(1)N1(1)" }, { "version_affected": "=", "version_value": "7.1(2)N1(1)" }, { "version_affected": "=", "version_value": "7.1(3)N1(1)" }, { "version_affected": "=", "version_value": "7.1(3)N1(2)" }, { "version_affected": "=", "version_value": "7.1(4)N1(1)" }, { "version_affected": "=", "version_value": "7.1(5)N1(1)" }, { "version_affected": "=", "version_value": "7.1(5)N1(1b)" }, { "version_affected": "=", "version_value": "7.2(0)D1(1)" }, { "version_affected": "=", "version_value": "7.2(1)D1(1)" }, { "version_affected": "=", "version_value": "7.2(2)D1(2)" }, { "version_affected": "=", "version_value": "7.2(2)D1(1)" }, { "version_affected": "=", "version_value": "7.3(0)D1(1)" }, { "version_affected": "=", "version_value": "7.3(0)DX(1)" }, { "version_affected": "=", "version_value": "7.3(0)N1(1)" }, { "version_affected": "=", "version_value": "9.2(1)" }, { "version_affected": "=", "version_value": "9.2(2)" }, { "version_affected": "=", "version_value": "9.2(2t)" }, { "version_affected": "=", "version_value": "9.2(3)" }, { "version_affected": "=", "version_value": "9.2(4)" }, { "version_affected": "=", "version_value": "9.2(2v)" }, { "version_affected": "=", "version_value": "9.3(1)" }, { "version_affected": "=", "version_value": "9.3(2)" }, { "version_affected": "=", "version_value": "9.3(3)" }, { "version_affected": "=", "version_value": "9.3(4)" }, { "version_affected": "=", "version_value": "9.3(5)" }, { "version_affected": "=", "version_value": "9.3(6)" }, { "version_affected": "=", "version_value": "9.3(7)" }, { "version_affected": "=", "version_value": "9.3(7a)" }, { "version_affected": "=", "version_value": "9.3(8)" }, { "version_affected": "=", "version_value": "9.3(9)" }, { "version_affected": "=", "version_value": "9.3(10)" }, { "version_affected": "=", "version_value": "9.3(11)" }, { "version_affected": "=", "version_value": "9.3(12)" }, { "version_affected": "=", "version_value": "10.1(1)" }, { "version_affected": "=", "version_value": "10.1(2)" }, { "version_affected": "=", "version_value": "10.1(2t)" }, { "version_affected": "=", "version_value": "10.2(1)" }, { "version_affected": "=", "version_value": "10.2(1q)" }, { "version_affected": "=", "version_value": "10.2(2)" }, { "version_affected": "=", "version_value": "10.2(3)" }, { "version_affected": "=", "version_value": "10.2(3t)" }, { "version_affected": "=", "version_value": "10.2(4)" }, { "version_affected": "=", "version_value": "10.2(5)" }, { "version_affected": "=", "version_value": "10.2(3v)" }, { "version_affected": "=", "version_value": "10.2(6)" }, { "version_affected": "=", "version_value": "10.3(1)" }, { "version_affected": "=", "version_value": "10.3(2)" }, { "version_affected": "=", "version_value": "10.3(3)" }, { "version_affected": "=", "version_value": "10.3(99w)" }, { "version_affected": "=", "version_value": "10.3(99x)" }, { "version_affected": "=", "version_value": "10.4(1)" } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-mpls-dos-R9ycXkwM", "refsource": "MISC", "name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipv6-mpls-dos-R9ycXkwM" } ] }, "source": { "advisory": "cisco-sa-ipv6-mpls-dos-R9ycXkwM", "discovery": "EXTERNAL", "defects": [ "CSCwh42690", "CSCva52387" ] }, "exploit": [ { "lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory." } ], "impact": { "cvss": [ { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "baseScore": 8.6, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH" } ] } }