漏洞标题
N/A
漏洞描述信息
在Cisco IOS XE 3.2至16.5中实现Locator/ID分离协议(LISP)的一个漏洞可能导致使用x隧道路由器的未授权的远程攻击者绕过在地图服务器/地图解析器(MS/MR)中注册Endpoint Identifier(EID)到路由定位器(RLOC)时执行的认证检查。该漏洞是由于受影响软件通过代码回归引入的逻辑错误引起的。攻击者可以通过向受影响软件发送特定的有效地图注册请求来利用此漏洞。即使认证密钥不匹配,MS/MR仍将接受该请求。成功的利用可能导致攻击者在受影响软件的MS/MR中注入无效的EID到RLOC映射。此漏洞影响配置LISP作为IPv4或IPv6地图服务器的Cisco设备。此漏洞影响Cisco IOS XE Software release train 3.9E和Everest 16.4。Cisco Bug ID: CSCvc18008。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 through 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifier (EID) to a Routing Locator (RLOC) in the map server/map resolver (MS/MR). The vulnerability is due to a logic error introduced via a code regression for the affected software. An attacker could exploit this vulnerability by sending specific valid map-registration requests, which will be accepted by the MS/MR even if the authentication keys do not match, to the affected software. A successful exploit could allow the attacker to inject invalid mappings of EIDs to RLOCs in the MS/MR of the affected software. This vulnerability affects Cisco devices that are configured with LISP acting as an IPv4 or IPv6 map server. This vulnerability affects Cisco IOS XE Software release trains 3.9E and Everest 16.4. Cisco Bug IDs: CSCvc18008.
CVSS信息
N/A
漏洞类别
认证机制不恰当
漏洞标题
Cisco IOS XE 授权问题漏洞
漏洞描述信息
Cisco IOS XE是美国思科(Cisco)公司为其网络设备开发的操作系统。 Cisco IOS XE 3.2版本至16.5版本中的Locator/ID Separation Protocol (LISP)的实现存在安全漏洞。远程攻击者可利用该漏洞绕过身份验证,向MS/MR中的RLOCs注入无效的EID映射。
CVSS信息
N/A
漏洞类别
授权问题