Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to improper handling of gRPC requests. An attacker could exploit this vulnerability by repeatedly sending unauthenticated gRPC requests to the affected device. A successful exploit could allow the attacker to crash the device in such a manner that manual intervention is required to recover. This vulnerability affects all Cisco IOS XR platforms that are running release 6.1.1 of Cisco IOS XR Software when the gRPC service is enabled on the device. The gRPC service is not enabled by default. Cisco Bug IDs: CSCvb14441.
CVSS Information
N/A
Vulnerability Type
资源管理错误
Vulnerability Title
Cisco IOS XR Software 安全漏洞
Vulnerability Description
Cisco IOS XR Software是美国思科(Cisco)公司的IOS软件系列(包括IOS T、IOS S和IOS XR)中的一套完全模块化、分布式的网络操作系统。 Cisco IOS XR Software中的Event Management Service daemon (emsd)存在拒绝服务漏洞,该漏洞源于程序没有正确的处理gRPC请求。远程攻击者可通过反复发送未授权的gRPC请求利用该漏洞造成拒绝服务(设备崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A