high
8.6
CWE
823
Advisory Published
Updated

CVE-2023-20187

First published: Wed Sep 27 2023(Updated: )

A vulnerability in the Multicast Leaf Recycle Elimination (mLRE) feature of Cisco IOS XE Software for Cisco ASR 1000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect handling of certain IPv6 multicast packets when they are fanned out more than seven times on an affected device. An attacker could exploit this vulnerability by sending a specific IPv6 multicast or IPv6 multicast VPN (MVPNv6) packet through the affected device. A successful exploit could allow the attacker to cause a reload of the affected device, resulting in a DoS condition.

Credit: ykramarz@cisco.com

Affected SoftwareAffected VersionHow to fix
Cisco IOS XE Web UI=3.7.1s
Cisco IOS XE Web UI=3.7.2s
Cisco IOS XE Web UI=3.7.2ts
Cisco IOS XE Web UI=3.7.3s
Cisco IOS XE Web UI=3.7.4s
Cisco IOS XE Web UI=3.7.5s
Cisco IOS XE Web UI=3.7.6s
Cisco IOS XE Web UI=3.7.7s
Cisco IOS XE Web UI=3.8.0s
Cisco IOS XE Web UI=3.8.1s
Cisco IOS XE Web UI=3.8.2s
Cisco IOS XE Web UI=3.9.0s
Cisco IOS XE Web UI=3.9.1s
Cisco IOS XE Web UI=3.9.2s
Cisco IOS XE Web UI=3.10.0s
Cisco IOS XE Web UI=3.10.1s
Cisco IOS XE Web UI=3.10.1xbs
Cisco IOS XE Web UI=3.10.2s
Cisco IOS XE Web UI=3.10.3s
Cisco IOS XE Web UI=3.10.4s
Cisco IOS XE Web UI=3.10.5s
Cisco IOS XE Web UI=3.10.6s
Cisco IOS XE Web UI=3.10.7s
Cisco IOS XE Web UI=3.10.8as
Cisco IOS XE Web UI=3.10.8s
Cisco IOS XE Web UI=3.10.9s
Cisco IOS XE Web UI=3.10.10s
Cisco IOS XE Web UI=3.11.0s
Cisco IOS XE Web UI=3.11.1s
Cisco IOS XE Web UI=3.11.2s
Cisco IOS XE Web UI=3.11.3s
Cisco IOS XE Web UI=3.11.4s
Cisco IOS XE Web UI=3.12.0s
Cisco IOS XE Web UI=3.12.1s
Cisco IOS XE Web UI=3.12.2s
Cisco IOS XE Web UI=3.12.3s
Cisco IOS XE Web UI=3.12.4s
Cisco IOS XE Web UI=3.13.0s
Cisco IOS XE Web UI=3.13.1s
Cisco IOS XE Web UI=3.13.2as
Cisco IOS XE Web UI=3.13.2s
Cisco IOS XE Web UI=3.13.3s
Cisco IOS XE Web UI=3.13.4s
Cisco IOS XE Web UI=3.13.5as
Cisco IOS XE Web UI=3.13.5s
Cisco IOS XE Web UI=3.13.6as
Cisco IOS XE Web UI=3.13.6s
Cisco IOS XE Web UI=3.13.7s
Cisco IOS XE Web UI=3.13.8s
Cisco IOS XE Web UI=3.13.9s
Cisco IOS XE Web UI=3.13.10s
Cisco IOS XE Web UI=3.14.0s
Cisco IOS XE Web UI=3.14.1s
Cisco IOS XE Web UI=3.14.2s
Cisco IOS XE Web UI=3.14.3s
Cisco IOS XE Web UI=3.14.4s
Cisco IOS XE Web UI=3.15.0s
Cisco IOS XE Web UI=3.15.1s
Cisco IOS XE Web UI=3.15.2s
Cisco IOS XE Web UI=3.15.3s
Cisco IOS XE Web UI=3.15.4s
Cisco IOS XE Web UI=3.16.0s
Cisco IOS XE Web UI=3.16.1as
Cisco IOS XE Web UI=3.16.2bs
Cisco IOS XE Web UI=3.16.2s
Cisco IOS XE Web UI=3.16.3s
Cisco IOS XE Web UI=3.16.4as
Cisco IOS XE Web UI=3.16.4bs
Cisco IOS XE Web UI=3.16.5s
Cisco IOS XE Web UI=3.16.6bs
Cisco IOS XE Web UI=3.16.6s
Cisco IOS XE Web UI=3.16.7as
Cisco IOS XE Web UI=3.16.7bs
Cisco IOS XE Web UI=3.16.7s
Cisco IOS XE Web UI=3.16.8s
Cisco IOS XE Web UI=3.16.9s
Cisco IOS XE Web UI=3.16.10s
Cisco IOS XE Web UI=3.17.0s
Cisco IOS XE Web UI=3.17.1as
Cisco IOS XE Web UI=3.17.1s
Cisco IOS XE Web UI=3.17.2s
Cisco IOS XE Web UI=3.17.3s
Cisco IOS XE Web UI=3.17.4s
Cisco IOS XE Web UI=16.2.1
Cisco IOS XE Web UI=16.2.2
Cisco IOS XE Web UI=16.3.1
Cisco IOS XE Web UI=16.3.1a
Cisco IOS XE Web UI=16.3.2
Cisco IOS XE Web UI=16.3.3
Cisco IOS XE Web UI=16.3.4
Cisco IOS XE Web UI=16.3.5
Cisco IOS XE Web UI=16.3.6
Cisco IOS XE Web UI=16.3.7
Cisco IOS XE Web UI=16.3.8
Cisco IOS XE Web UI=16.3.9
Cisco IOS XE Web UI=16.3.10
Cisco IOS XE Web UI=16.3.11
Cisco IOS XE Web UI=16.4.1
Cisco IOS XE Web UI=16.4.2
Cisco IOS XE Web UI=16.4.3
Cisco IOS XE Web UI=16.5.1
Cisco IOS XE Web UI=16.5.1b
Cisco IOS XE Web UI=16.5.2
Cisco IOS XE Web UI=16.5.3
Cisco IOS XE Web UI=16.6.1
Cisco IOS XE Web UI=16.6.2
Cisco IOS XE Web UI=16.6.3
Cisco IOS XE Web UI=16.6.4
Cisco IOS XE Web UI=16.6.5
Cisco IOS XE Web UI=16.6.6
Cisco IOS XE Web UI=16.6.7
Cisco IOS XE Web UI=16.6.8
Cisco IOS XE Web UI=16.6.9
Cisco IOS XE Web UI=16.6.10
Cisco IOS XE Web UI=16.7.1
Cisco IOS XE Web UI=16.7.2
Cisco IOS XE Web UI=16.7.3
Cisco IOS XE Web UI=16.8.1
Cisco IOS XE Web UI=16.8.1s
Cisco IOS XE Web UI=16.8.2
Cisco IOS XE Web UI=16.8.3
Cisco IOS XE Web UI=16.9.1
Cisco IOS XE Web UI=16.9.1s
Cisco IOS XE Web UI=16.9.2
Cisco IOS XE Web UI=16.9.3
Cisco IOS XE Web UI=16.9.4
Cisco IOS XE Web UI=16.9.5
Cisco IOS XE Web UI=16.9.6
Cisco IOS XE Web UI=16.9.7
Cisco IOS XE Web UI=16.9.8
Cisco IOS XE Web UI=16.10.1
Cisco IOS XE Web UI=16.10.1a
Cisco IOS XE Web UI=16.10.1e
Cisco IOS XE Web UI=16.10.1s
Cisco IOS XE Web UI=16.10.2
Cisco IOS XE Web UI=16.10.3
Cisco IOS XE Web UI=16.11.1
Cisco IOS XE Web UI=16.11.1a
Cisco IOS XE Web UI=16.11.1s
Cisco IOS XE Web UI=16.11.2
Cisco IOS XE Web UI=16.12.1
Cisco IOS XE Web UI=16.12.1a
Cisco IOS XE Web UI=16.12.1c
Cisco IOS XE Web UI=16.12.1s
Cisco IOS XE Web UI=16.12.2
Cisco IOS XE Web UI=16.12.2s
Cisco IOS XE Web UI=16.12.3
Cisco IOS XE Web UI=16.12.3s
Cisco IOS XE Web UI=16.12.4
Cisco IOS XE Web UI=16.12.5
Cisco IOS XE Web UI=16.12.6
Cisco IOS XE Web UI=16.12.7
Cisco IOS XE Web UI=16.12.8
Cisco IOS XE Web UI=17.1.1
Cisco IOS XE Web UI=17.1.1s
Cisco IOS XE Web UI=17.1.1t
Cisco IOS XE Web UI=17.1.3
Cisco IOS XE Web UI=17.2.1
Cisco IOS XE Web UI=17.2.1r
Cisco IOS XE Web UI=17.2.1v
Cisco IOS XE Web UI=17.2.2
Cisco IOS XE Web UI=17.2.3
Cisco IOS XE Web UI=17.3.1
Cisco IOS XE Web UI=17.3.1a
Cisco IOS XE Web UI=17.3.2
Cisco IOS XE Web UI=17.3.3
Cisco IOS XE Web UI=17.3.4
Cisco IOS XE Web UI=17.3.4a
Cisco IOS XE Web UI=17.3.5
Cisco IOS XE Web UI=17.3.6
Cisco IOS XE Web UI=17.3.7
Cisco IOS XE Web UI=17.4.1
Cisco IOS XE Web UI=17.4.1a
Cisco IOS XE Web UI=17.4.1b
Cisco IOS XE Web UI=17.4.2
Cisco IOS XE Web UI=17.5.1
Cisco IOS XE Web UI=17.5.1a
Cisco IOS XE Web UI=17.5.1b
Cisco IOS XE Web UI=17.5.1c
Cisco IOS XE Web UI=17.6.1
Cisco IOS XE Web UI=17.6.1a
Cisco IOS XE Web UI=17.6.2
Cisco IOS XE Web UI=17.6.3
Cisco IOS XE Web UI=17.6.3a
Cisco IOS XE Web UI=17.6.4
Cisco IOS XE Web UI=17.6.5
Cisco IOS XE Web UI=17.7.1
Cisco IOS XE Web UI=17.7.1a
Cisco IOS XE Web UI=17.7.2
Cisco IOS XE Web UI=17.8.1
Cisco IOS XE Web UI=17.8.1a
Cisco IOS XE Web UI=17.9.1
Cisco IOS XE Web UI=17.9.1a
Cisco IOS XE Web UI=17.9.2
Cisco IOS XE Web UI=17.9.2a
Cisco IOS XE Web UI=17.9.3
Cisco IOS XE Web UI=17.9.3a
Cisco IOS XE Web UI=17.10.1
Cisco IOS XE Web UI=17.10.1a
Cisco IOS XE Web UI=17.11.1
Cisco IOS XE Web UI=17.11.1a
Cisco ASR 1000 Series
Cisco ASR 1000 ESP 200
Cisco ASR 1000 ESP 40
Cisco ASR 1001-HX
Cisco ASR 1001-X
Cisco ASR 1002-HX
Cisco ASR 1002-X
All of
Any of
Cisco IOS XE Web UI=3.7.1s
Cisco IOS XE Web UI=3.7.2s
Cisco IOS XE Web UI=3.7.2ts
Cisco IOS XE Web UI=3.7.3s
Cisco IOS XE Web UI=3.7.4s
Cisco IOS XE Web UI=3.7.5s
Cisco IOS XE Web UI=3.7.6s
Cisco IOS XE Web UI=3.7.7s
Cisco IOS XE Web UI=3.8.0s
Cisco IOS XE Web UI=3.8.1s
Cisco IOS XE Web UI=3.8.2s
Cisco IOS XE Web UI=3.9.0s
Cisco IOS XE Web UI=3.9.1s
Cisco IOS XE Web UI=3.9.2s
Cisco IOS XE Web UI=3.10.0s
Cisco IOS XE Web UI=3.10.1s
Cisco IOS XE Web UI=3.10.1xbs
Cisco IOS XE Web UI=3.10.2s
Cisco IOS XE Web UI=3.10.3s
Cisco IOS XE Web UI=3.10.4s
Cisco IOS XE Web UI=3.10.5s
Cisco IOS XE Web UI=3.10.6s
Cisco IOS XE Web UI=3.10.7s
Cisco IOS XE Web UI=3.10.8as
Cisco IOS XE Web UI=3.10.8s
Cisco IOS XE Web UI=3.10.9s
Cisco IOS XE Web UI=3.10.10s
Cisco IOS XE Web UI=3.11.0s
Cisco IOS XE Web UI=3.11.1s
Cisco IOS XE Web UI=3.11.2s
Cisco IOS XE Web UI=3.11.3s
Cisco IOS XE Web UI=3.11.4s
Cisco IOS XE Web UI=3.12.0s
Cisco IOS XE Web UI=3.12.1s
Cisco IOS XE Web UI=3.12.2s
Cisco IOS XE Web UI=3.12.3s
Cisco IOS XE Web UI=3.12.4s
Cisco IOS XE Web UI=3.13.0s
Cisco IOS XE Web UI=3.13.1s
Cisco IOS XE Web UI=3.13.2as
Cisco IOS XE Web UI=3.13.2s
Cisco IOS XE Web UI=3.13.3s
Cisco IOS XE Web UI=3.13.4s
Cisco IOS XE Web UI=3.13.5as
Cisco IOS XE Web UI=3.13.5s
Cisco IOS XE Web UI=3.13.6as
Cisco IOS XE Web UI=3.13.6s
Cisco IOS XE Web UI=3.13.7s
Cisco IOS XE Web UI=3.13.8s
Cisco IOS XE Web UI=3.13.9s
Cisco IOS XE Web UI=3.13.10s
Cisco IOS XE Web UI=3.14.0s
Cisco IOS XE Web UI=3.14.1s
Cisco IOS XE Web UI=3.14.2s
Cisco IOS XE Web UI=3.14.3s
Cisco IOS XE Web UI=3.14.4s
Cisco IOS XE Web UI=3.15.0s
Cisco IOS XE Web UI=3.15.1s
Cisco IOS XE Web UI=3.15.2s
Cisco IOS XE Web UI=3.15.3s
Cisco IOS XE Web UI=3.15.4s
Cisco IOS XE Web UI=3.16.0s
Cisco IOS XE Web UI=3.16.1as
Cisco IOS XE Web UI=3.16.2bs
Cisco IOS XE Web UI=3.16.2s
Cisco IOS XE Web UI=3.16.3s
Cisco IOS XE Web UI=3.16.4as
Cisco IOS XE Web UI=3.16.4bs
Cisco IOS XE Web UI=3.16.5s
Cisco IOS XE Web UI=3.16.6bs
Cisco IOS XE Web UI=3.16.6s
Cisco IOS XE Web UI=3.16.7as
Cisco IOS XE Web UI=3.16.7bs
Cisco IOS XE Web UI=3.16.7s
Cisco IOS XE Web UI=3.16.8s
Cisco IOS XE Web UI=3.16.9s
Cisco IOS XE Web UI=3.16.10s
Cisco IOS XE Web UI=3.17.0s
Cisco IOS XE Web UI=3.17.1as
Cisco IOS XE Web UI=3.17.1s
Cisco IOS XE Web UI=3.17.2s
Cisco IOS XE Web UI=3.17.3s
Cisco IOS XE Web UI=3.17.4s
Cisco IOS XE Web UI=16.2.1
Cisco IOS XE Web UI=16.2.2
Cisco IOS XE Web UI=16.3.1
Cisco IOS XE Web UI=16.3.1a
Cisco IOS XE Web UI=16.3.2
Cisco IOS XE Web UI=16.3.3
Cisco IOS XE Web UI=16.3.4
Cisco IOS XE Web UI=16.3.5
Cisco IOS XE Web UI=16.3.6
Cisco IOS XE Web UI=16.3.7
Cisco IOS XE Web UI=16.3.8
Cisco IOS XE Web UI=16.3.9
Cisco IOS XE Web UI=16.3.10
Cisco IOS XE Web UI=16.3.11
Cisco IOS XE Web UI=16.4.1
Cisco IOS XE Web UI=16.4.2
Cisco IOS XE Web UI=16.4.3
Cisco IOS XE Web UI=16.5.1
Cisco IOS XE Web UI=16.5.1b
Cisco IOS XE Web UI=16.5.2
Cisco IOS XE Web UI=16.5.3
Cisco IOS XE Web UI=16.6.1
Cisco IOS XE Web UI=16.6.2
Cisco IOS XE Web UI=16.6.3
Cisco IOS XE Web UI=16.6.4
Cisco IOS XE Web UI=16.6.5
Cisco IOS XE Web UI=16.6.6
Cisco IOS XE Web UI=16.6.7
Cisco IOS XE Web UI=16.6.8
Cisco IOS XE Web UI=16.6.9
Cisco IOS XE Web UI=16.6.10
Cisco IOS XE Web UI=16.7.1
Cisco IOS XE Web UI=16.7.2
Cisco IOS XE Web UI=16.7.3
Cisco IOS XE Web UI=16.8.1
Cisco IOS XE Web UI=16.8.1s
Cisco IOS XE Web UI=16.8.2
Cisco IOS XE Web UI=16.8.3
Cisco IOS XE Web UI=16.9.1
Cisco IOS XE Web UI=16.9.1s
Cisco IOS XE Web UI=16.9.2
Cisco IOS XE Web UI=16.9.3
Cisco IOS XE Web UI=16.9.4
Cisco IOS XE Web UI=16.9.5
Cisco IOS XE Web UI=16.9.6
Cisco IOS XE Web UI=16.9.7
Cisco IOS XE Web UI=16.9.8
Cisco IOS XE Web UI=16.10.1
Cisco IOS XE Web UI=16.10.1a
Cisco IOS XE Web UI=16.10.1e
Cisco IOS XE Web UI=16.10.1s
Cisco IOS XE Web UI=16.10.2
Cisco IOS XE Web UI=16.10.3
Cisco IOS XE Web UI=16.11.1
Cisco IOS XE Web UI=16.11.1a
Cisco IOS XE Web UI=16.11.1s
Cisco IOS XE Web UI=16.11.2
Cisco IOS XE Web UI=16.12.1
Cisco IOS XE Web UI=16.12.1a
Cisco IOS XE Web UI=16.12.1c
Cisco IOS XE Web UI=16.12.1s
Cisco IOS XE Web UI=16.12.2
Cisco IOS XE Web UI=16.12.2s
Cisco IOS XE Web UI=16.12.3
Cisco IOS XE Web UI=16.12.3s
Cisco IOS XE Web UI=16.12.4
Cisco IOS XE Web UI=16.12.5
Cisco IOS XE Web UI=16.12.6
Cisco IOS XE Web UI=16.12.7
Cisco IOS XE Web UI=16.12.8
Cisco IOS XE Web UI=17.1.1
Cisco IOS XE Web UI=17.1.1s
Cisco IOS XE Web UI=17.1.1t
Cisco IOS XE Web UI=17.1.3
Cisco IOS XE Web UI=17.2.1
Cisco IOS XE Web UI=17.2.1r
Cisco IOS XE Web UI=17.2.1v
Cisco IOS XE Web UI=17.2.2
Cisco IOS XE Web UI=17.2.3
Cisco IOS XE Web UI=17.3.1
Cisco IOS XE Web UI=17.3.1a
Cisco IOS XE Web UI=17.3.2
Cisco IOS XE Web UI=17.3.3
Cisco IOS XE Web UI=17.3.4
Cisco IOS XE Web UI=17.3.4a
Cisco IOS XE Web UI=17.3.5
Cisco IOS XE Web UI=17.3.6
Cisco IOS XE Web UI=17.3.7
Cisco IOS XE Web UI=17.4.1
Cisco IOS XE Web UI=17.4.1a
Cisco IOS XE Web UI=17.4.1b
Cisco IOS XE Web UI=17.4.2
Cisco IOS XE Web UI=17.5.1
Cisco IOS XE Web UI=17.5.1a
Cisco IOS XE Web UI=17.5.1b
Cisco IOS XE Web UI=17.5.1c
Cisco IOS XE Web UI=17.6.1
Cisco IOS XE Web UI=17.6.1a
Cisco IOS XE Web UI=17.6.2
Cisco IOS XE Web UI=17.6.3
Cisco IOS XE Web UI=17.6.3a
Cisco IOS XE Web UI=17.6.4
Cisco IOS XE Web UI=17.6.5
Cisco IOS XE Web UI=17.7.1
Cisco IOS XE Web UI=17.7.1a
Cisco IOS XE Web UI=17.7.2
Cisco IOS XE Web UI=17.8.1
Cisco IOS XE Web UI=17.8.1a
Cisco IOS XE Web UI=17.9.1
Cisco IOS XE Web UI=17.9.1a
Cisco IOS XE Web UI=17.9.2
Cisco IOS XE Web UI=17.9.2a
Cisco IOS XE Web UI=17.9.3
Cisco IOS XE Web UI=17.9.3a
Cisco IOS XE Web UI=17.10.1
Cisco IOS XE Web UI=17.10.1a
Cisco IOS XE Web UI=17.11.1
Cisco IOS XE Web UI=17.11.1a
Any of
Cisco ASR 1000 Series
Cisco ASR 1000 ESP 200
Cisco ASR 1000 ESP 40
Cisco ASR 1001-HX
Cisco ASR 1001-X
Cisco ASR 1002-HX
Cisco ASR 1002-X

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2023-20187?

    CVE-2023-20187 has been classified with a severity rating that allows unauthorized remote attackers to remotely cause devices to reload.

  • How do I fix CVE-2023-20187?

    To fix CVE-2023-20187, upgrade the affected Cisco IOS XE Software to a patched version as recommended by Cisco.

  • Which devices are affected by CVE-2023-20187?

    CVE-2023-20187 affects Cisco ASR 1000 Series Aggregation Services Routers running specific versions of Cisco IOS XE Software.

  • What is the impact of CVE-2023-20187?

    The impact of CVE-2023-20187 is a denial of service (DoS) condition resulting from an unauthenticated remote attack.

  • Is there a workaround for CVE-2023-20187?

    No official workaround for CVE-2023-20187 is provided, hence upgrading to the fixed software version is the recommended approach.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203