漏洞标题
思科IOS XE软件网络地址转换速率限制拒绝服务漏洞
漏洞描述信息
Cisco IOS XE软件速率限制网络地址转换拒绝服务漏洞
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability
漏洞描述信息
A vulnerability in the Rate Limiting Network Address Translation (NAT) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause high CPU utilization in the Cisco QuantumFlow Processor of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to mishandling of the rate limiting feature within the QuantumFlow Processor. An attacker could exploit this vulnerability by sending large amounts of traffic that would be subject to NAT and rate limiting through an affected device. A successful exploit could allow the attacker to cause the QuantumFlow Processor utilization to reach 100 percent on the affected device, resulting in a DoS condition.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
漏洞类别
资源管理错误
漏洞标题
Cisco IOS XE Software 安全漏洞
漏洞描述信息
Cisco IOS XE Software是美国思科(Cisco)公司的一个操作系统。用于企业有线和无线访问,汇聚,核心和WAN的单一操作系统,Cisco IOS XE降低了业务和网络的复杂性。 Cisco IOS XE Software 中存在安全漏洞,该漏洞源于产品网络地址转换(NAT)的速率限制功能处理不当。攻击者可通过该漏洞导致设备的Cisco QuantumFlow处理器拒绝服务。
CVSS信息
N/A
漏洞类别
其他