CVE-2021-34713: Cisco IOS XR Software for ASR 9000 Series Routers Denial of Service Vulnerability
First published: Thu Sep 09 2021(Updated: )
A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to cause the affected line card to reboot. This vulnerability is due to incorrect handling of specific Ethernet frames that cause a spin loop that can make the network processors unresponsive. An attacker could exploit this vulnerability by sending specific types of Ethernet frames on the segment where the affected line cards are attached. A successful exploit could allow the attacker to cause the affected line card to reboot.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XR | >=6.4<6.6.3 | |
| Cisco IOS XR | >=6.7<6.7.1 | |
| Cisco IOS XR | >=7.0<7.0.2 | |
| Cisco IOS XR | >=7.1<7.1.1 | |
| Cisco ASR 9000 | ||
| Cisco Asr 9000v-v2 | ||
| Cisco Asr 9001 | ||
| Cisco Asr 9006 | ||
| Cisco Asr 9010 | ||
| Cisco Asr 9901 | ||
| Cisco Asr 9902 | ||
| Cisco Asr 9903 | ||
| Cisco Asr 9904 | ||
| Cisco Asr 9906 | ||
| Cisco Asr 9910 | ||
| Cisco Asr 9912 | ||
| Cisco Asr 9922 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this Cisco IOS XR Software vulnerability?
The vulnerability ID is CVE-2021-34713.
What is the severity of CVE-2021-34713?
The severity of CVE-2021-34713 is high with a CVSS score of 7.4.
Which Cisco IOS XR Software versions are affected by CVE-2021-34713?
Cisco IOS XR Software versions 6.4 through 6.6.3, 6.7 through 6.7.1, 7.0 through 7.0.2, and 7.1 through 7.1.1 are affected by CVE-2021-34713.
How can an attacker exploit CVE-2021-34713?
An unauthenticated, adjacent attacker can exploit CVE-2021-34713 by sending specific Ethernet frames to the affected line card, causing it to reboot.
Where can I find more information about CVE-2021-34713?
You can find more information about CVE-2021-34713 in the Cisco Security Advisory at https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-npspin-QYpwdhFD.
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/title
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/type
- agent/first-publish-date
- agent/event
- agent/description
- vendor/cisco
- canonical/cisco ios xr
- version/cisco ios xr/6.4
- version/cisco ios xr/6.7
- version/cisco ios xr/7.0
- version/cisco ios xr/7.1
- canonical/cisco asr 9000
- canonical/cisco asr 9000v-v2
- canonical/cisco asr 9001
- canonical/cisco asr 9006
- canonical/cisco asr 9010
- canonical/cisco asr 9901
- canonical/cisco asr 9902
- canonical/cisco asr 9903
- canonical/cisco asr 9904
- canonical/cisco asr 9906
- canonical/cisco asr 9910
- canonical/cisco asr 9912
- canonical/cisco asr 9922