QID 317302
Date Published: 2023-03-27
QID 317302: Cisco Internetwork Operating System (IOS) XR Software for ASR 9000 Series Routers Bidirectional Forwarding Detection Denial of Service (DoS) Vulnerability (cisco-sa-bfd-XmRescbT)
A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902 Compact High-Performance Routers, and ASR 9903 Compact High-Performance Routers could allow an unauthenticated, remote attacker to cause a line card to reset, resulting in a denial of service (DoS) condition.
Making this QID as practice as we cannot add Workarounds configuration check in signature.
Affected Products
Cisco devices if they were running Cisco IOS XR Software releases
From 6.5 and Prior to 7.5.3
From 7.6 and Prior to 7.6.2
7.7 and later and Prior to 7.7.1
QID Detection Logic (Authenticated):
The check matches Cisco IOS XR version retrieved via Unix Auth using "show version" command.
A successful exploit could allow the attacker to cause line card exceptions or a hard reset, resulting in loss of traffic over that line card while the line card reloads.
Customers are advised to refer to cisco-sa-bfd-XmRescbT for more information.
- cisco-sa-bfd-XmRescbT -
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bfd-XmRescbT
CVEs related to QID 317302
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-bfd-XmRescbT |
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bfd-XmRescbT |