Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities
Vulnerability Description
Multiple vulnerabilities in the Zone-Based Firewall feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload or stop forwarding traffic through the firewall. The vulnerabilities are due to incomplete handling of Layer 4 packets through the device. An attacker could exploit these vulnerabilities by sending a certain sequence of traffic patterns through the device. A successful exploit could allow the attacker to cause the device to reload or stop forwarding traffic through the firewall, resulting in a denial of service. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Vulnerability Type
对因果或异常条件的不恰当检查
Vulnerability Title
Cisco IOS XE Software Zone-Based Firewall 代码问题漏洞
Vulnerability Description
Cisco IOS和IOS XE都是美国思科(Cisco)公司的产品。CLI是其中的一个命令行界面。 Cisco IOS XE Software Zone-Based Firewall feature中存在安全漏洞,该漏洞源于未通过设备处理第4层数据包引起的,该漏洞允许攻击者可以通过设备发送一定顺序的流量模式来利用这些漏洞。
CVSS Information
N/A
Vulnerability Type
N/A