CVE-2024-20304: Cisco IOS XR Software Packet Memory Exhaustion Vulnerability
First published: Wed Sep 11 2024(Updated: )
A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle packet memory. An attacker could exploit this vulnerability by sending crafted packets to an affected device. A successful exploit could allow the attacker to exhaust the incoming UDP packet memory. The affected device would not be able to process higher-level UDP-based protocols packets, possibly causing a denial of service (DoS) condition. Note: This vulnerability can be exploited using IPv4 or IPv6.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XRv 9000 | =7.7.1 | |
| Cisco IOS XRv 9000 | =7.7.2 | |
| Cisco IOS XRv 9000 | =7.7.21 | |
| Cisco IOS XRv 9000 | =7.8.1 | |
| Cisco IOS XRv 9000 | =7.8.2 | |
| Cisco IOS XRv 9000 | =7.8.12 | |
| Cisco IOS XRv 9000 | =7.8.22 | |
| Cisco IOS XRv 9000 | =7.9.1 | |
| Cisco IOS XRv 9000 | =7.9.2 | |
| Cisco IOS XRv 9000 | =7.9.21 | |
| Cisco IOS XRv 9000 | =7.10.1 | |
| Cisco IOS XRv 9000 | =7.10.2 | |
| Cisco IOS XRv 9000 | =7.11.1 | |
| Cisco IOS XRv 9000 | =7.11.2 | |
| Cisco IOS XRv 9000 | =24.1.1 | |
| Cisco IOS XRv 9000 | =24.1.2 | |
| Cisco IOS XRv 9000 | =24.2.1 | |
| Cisco IOS XRv 9000 | =24.2.11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-20304?
CVE-2024-20304 is rated as a high severity vulnerability due to potential denial of service risks.
How do I fix CVE-2024-20304?
To remediate CVE-2024-20304, upgrade to the patched versions of Cisco IOS XR Software specified in the advisory.
What devices are affected by CVE-2024-20304?
CVE-2024-20304 affects various versions of Cisco IOS XR Software installed on the Cisco IOS XRv 9000 platform.
Can CVE-2024-20304 be exploited remotely?
Yes, CVE-2024-20304 can be exploited by an unauthenticated remote attacker.
What is the impact of CVE-2024-20304 on system performance?
The impact of CVE-2024-20304 is the exhaustion of the UDP packet memory, potentially leading to denial of service.
- agent/title
- agent/references
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xrv 9000
- version/cisco ios xrv 9000/7.7.1
- version/cisco ios xrv 9000/7.7.2
- version/cisco ios xrv 9000/7.7.21
- version/cisco ios xrv 9000/7.8.1
- version/cisco ios xrv 9000/7.8.2
- version/cisco ios xrv 9000/7.8.12
- version/cisco ios xrv 9000/7.8.22
- version/cisco ios xrv 9000/7.9.1
- version/cisco ios xrv 9000/7.9.2
- version/cisco ios xrv 9000/7.9.21
- version/cisco ios xrv 9000/7.10.1
- version/cisco ios xrv 9000/7.10.2
- version/cisco ios xrv 9000/7.11.1
- version/cisco ios xrv 9000/7.11.2
- version/cisco ios xrv 9000/24.1.1
- version/cisco ios xrv 9000/24.1.2
- version/cisco ios xrv 9000/24.2.1
- version/cisco ios xrv 9000/24.2.11