QID 317163
Date Published: 2022-04-27
QID 317163: Cisco Internetwork Operating System (IOS) XE Software IPSec Denial of Service (DoS) Vulnerability (cisco-sa-qfp-ipsec-GQmqvtqV)
A vulnerability in the IPSec decryption routine of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition.
Affected Products
At the time of publication, this vulnerability affected the following Cisco products if they were configured to terminate IPsec VPN connections and were running a vulnerable release of Cisco IOS XE Software that was running in autonomous or controller mode:
1000 Series Integrated Services Routers
4221 Integrated Services Routers
4321 Integrated Services Routers
4331 Integrated Services Routers
4351 Integrated Services Routers
Catalyst 8200 Series Edge Platform
Catalyst 8300 Series Edge Platform
Note 1: This QID does not check for products Catalyst 8200 Series Edge Platform and Catalyst 8300 Series Edge Platform.
Note 2: IPsec VPN is not configured by default.
QID Detection Logic (Authenticated):
The check matches Cisco IOS XE version retrieved via Unix Auth using "show version" command.
QID Detection Logic (Unauthenticated):
The check matches Cisco IOS XE version retrieved via SNMP or TCP/IP Fingerprint or NTP or Telnet.
successful exploit could allow the attacker to cause the device to reload.
Customers are advised to refer to cisco-sa-qfp-ipsec-GQmqvtqV for more information.
- cisco-sa-qfp-ipsec-GQmqvtqV -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-qfp-ipsec-GQmqvtqV
CVEs related to QID 317163
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-qfp-ipsec-GQmqvtqV |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-qfp-ipsec-GQmqvtqV |