What is the severity of CVE-2021-1394?

CVE-2021-1394 has a high severity rating due to its potential to cause a denial of service (DoS) condition.

How do I fix CVE-2021-1394?

To fix CVE-2021-1394, you should upgrade to a patched version of Cisco IOS XE that addresses the vulnerability.

What devices are affected by CVE-2021-1394?

CVE-2021-1394 affects the Cisco Network Convergence System (NCS) 520 Routers running specific versions of Cisco IOS XE.

Can CVE-2021-1394 be exploited remotely?

Yes, CVE-2021-1394 can be exploited by an unauthenticated remote attacker.

What impact does CVE-2021-1394 have on network services?

CVE-2021-1394 can lead to a denial of service, impacting the availability of the web management interface of affected devices.

Vulnerability/
CVE-2021-1394

medium

5.3

CWE

399

24/3/2021

8/11/2024

CVE-2021-1394: Cisco IOS XE Software for Network Convergence System 520 Routers Denial of Service Vulnerability

First published: Wed Mar 24 2021(Updated: )

A vulnerability in the ingress traffic manager of Cisco IOS XE Software for Cisco Network Convergence System (NCS) 520 Routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition in the web management interface of an affected device. This vulnerability is due to incorrect processing of certain IPv4 TCP traffic that is destined to an affected device. An attacker could exploit this vulnerability by sending a large number of crafted TCP packets to the affected device. A successful exploit could allow the attacker to cause the web management interface to become unavailable, resulting in a DoS condition. Note: This vulnerability does not impact traffic that is going through the device or going to the Management Ethernet interface of the device.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS XE Web UI	=16.10.1
Cisco IOS XE Web UI	=16.10.1a
Cisco IOS XE Web UI	=16.10.1b
Cisco IOS XE Web UI	=16.10.1c
Cisco IOS XE Web UI	=16.10.1d
Cisco IOS XE Web UI	=16.10.1e
Cisco IOS XE Web UI	=16.10.1f
Cisco IOS XE Web UI	=16.10.1g
Cisco IOS XE Web UI	=16.10.1s
Cisco IOS XE Web UI	=17.2.1v

Never miss a vulnerability like this again

Reference Links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs520-tcp-ZpzzOxB

Frequently Asked Questions

What is the severity of CVE-2021-1394?
CVE-2021-1394 has a high severity rating due to its potential to cause a denial of service (DoS) condition.
How do I fix CVE-2021-1394?
To fix CVE-2021-1394, you should upgrade to a patched version of Cisco IOS XE that addresses the vulnerability.
What devices are affected by CVE-2021-1394?
CVE-2021-1394 affects the Cisco Network Convergence System (NCS) 520 Routers running specific versions of Cisco IOS XE.
Can CVE-2021-1394 be exploited remotely?
Yes, CVE-2021-1394 can be exploited by an unauthenticated remote attacker.
What impact does CVE-2021-1394 have on network services?
CVE-2021-1394 can lead to a denial of service, impacting the availability of the web management interface of affected devices.

agent/type
agent/softwarecombine
agent/references
agent/weakness
agent/title
agent/severity
agent/author
agent/description
agent/first-publish-date
agent/event
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco ios xe web ui
version/cisco ios xe web ui/16.10.1
version/cisco ios xe web ui/16.10.1a
version/cisco ios xe web ui/16.10.1b
version/cisco ios xe web ui/16.10.1c
version/cisco ios xe web ui/16.10.1d
version/cisco ios xe web ui/16.10.1e
version/cisco ios xe web ui/16.10.1f
version/cisco ios xe web ui/16.10.1g
version/cisco ios xe web ui/16.10.1s
version/cisco ios xe web ui/17.2.1v