QID 317050
Date Published: 2021-09-23
QID 317050: Cisco Internetwork Operating System (IOS) XE Software for Catalyst 9800 Series Wireless Controllers EoGRE Denial of Service (DoS) Vulnerability (cisco-sa-ewlc-gre-6u4ELzAT)
A vulnerability in Ethernet over GRE (EoGRE) packet processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9800 Family Wireless Controller, Embedded Wireless Controller, and Embedded Wireless on Catalyst 9000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
Affected Products
This vulnerability affects Cisco IOS XE Wireless Controller Software if the device is running a vulnerable release and has an interface configured with an EoGRE tunnel. The following Cisco products are vulnerable:
Catalyst 9800 Embedded Wireless Controller for Catalyst 9300, 9400, and 9500 Series Switches
Catalyst 9800 Series Wireless Controllers
Catalyst 9800 Wireless Controller for Cloud
Embedded Wireless Controller on Catalyst Access Points
QID Detection Logic (Authenticated):
The check matches Cisco IOS XE version retrieved via Unix Auth using "show version" command.
QID Detection Logic (Unauthenticated):
The check matches Cisco IOS XE version retrieved via SNMP or TCP/IP Fingerprint or NTP or Telnet.
A successful exploit could allow the attacker to cause the device to reload, resulting in a DoS condition.
Customers are advised to refer to cisco-sa-ewlc-gre-6u4ELzAT for more information.
- cisco-sa-ewlc-gre-6u4ELzAT -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-gre-6u4ELzAT
CVEs related to QID 317050
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-ewlc-gre-6u4ELzAT |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-gre-6u4ELzAT |