cisco-sa-bgp-ErKEqAer: Cisco IOS XR Software Additional Paths Denial of Service Vulnerability

First published: Wed Aug 05 2020(Updated: )

A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to prevent authorized users from monitoring the BGP status and cause the BGP process to stop processing new updates, resulting in a denial of service (DOS) condition. The vulnerability is due to an incorrect calculation of lexicographical order when displaying additional path information within Cisco IOS XR Software, which causes an infinite loop. An attacker could exploit this vulnerability by sending a specific BGP update from a BGP neighbor peer session of an affected device; an authorized user must then issue a show bgp command for the vulnerability to be exploited. A successful exploit could allow the attacker to prevent authorized users from properly monitoring the BGP status and prevent BGP from processing new updates, resulting in outdated information in the routing and forwarding tables. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bgp-ErKEqAer

Credit: This vulnerability was found during the resolution a Cisco TAC support case

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/last-modified-date
• agent/softwarecombine
• agent/first-publish-date
• collector/cisco-advisory
• source/Cisco
• agent/software-canonical-lookup
• agent/severity
• agent/author
• agent/references
• agent/weakness
• agent/title
• agent/description
• agent/tags
• agent/event
• vendor/cisco
• canonical/cisco ios xr
• version/cisco ios xr/6.5.3