Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS XE Software Raw Socket Transport Denial of Service Vulnerability
Vulnerability Description
A vulnerability in the Raw Socket Transport feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper parsing of Raw Socket Transport payloads. An attacker could exploit this vulnerability by establishing a TCP session and then sending a malicious TCP segment via IPv4 to an affected device. This cannot be exploited via IPv6, as the Raw Socket Transport feature does not support IPv6 as a network layer protocol.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Cisco ASR 900 Cisco IOS XE 输入验证错误漏洞
Vulnerability Description
Cisco ASR 900是美国思科(Cisco)公司的一款900系列聚合服务路由器。Cisco IOS XE是一套为Cisco网络设备开发的操作系统。 Cisco ASR 900系列中的Cisco IOS XE 16.9版本的Raw Socket Transport功能存在输入验证错误漏洞,该漏洞源于程序没有正确解析Raw Socket Transport payloads。远程攻击者可通过建立TCP会话并借助IPv4发送恶意的TCP片段利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A