漏洞标题
思科IOS XE软件区域基础防火墙拒绝服务漏洞
漏洞描述信息
思科IOS XE软件区域基础防火墙拒绝服务漏洞
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities
漏洞描述信息
Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. The vulnerabilities are due to incomplete handling of Layer 4 packets through the device. An attacker could exploit these vulnerabilities by sending a certain sequence of traffic patterns through the device. A successful exploit could allow the attacker to cause the device to reload or stop forwarding traffic through the firewall, resulting in a denial of service. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
漏洞类别
对因果或异常条件的不恰当检查
漏洞标题
Cisco IOS XE Software Zone-Based Firewall 代码问题漏洞
漏洞描述信息
Cisco IOS和IOS XE都是美国思科(Cisco)公司的产品。CLI是其中的一个命令行界面。 Cisco IOS XE Software Zone-Based Firewall feature中存在安全漏洞,该漏洞源于未通过设备处理第4层数据包引起的,该漏洞允许攻击者可以通过设备发送一定顺序的流量模式来利用这些漏洞。
CVSS信息
N/A
漏洞类别
代码问题