What is the severity of Cisco-SA-cbr8snmp-zGjkZ9Fc?

The vulnerability is rated as critical due to its potential to cause a denial of service (DoS) condition.

How do I fix Cisco-SA-cbr8snmp-zGjkZ9Fc?

To mitigate the vulnerability, apply the recommended software updates provided by Cisco.

What products are affected by Cisco-SA-cbr8snmp-zGjkZ9Fc?

The affected products include Cisco cBR-8 Converged Broadband Routers and Cisco IOS XE Software.

Who can exploit Cisco-SA-cbr8snmp-zGjkZ9Fc?

An authenticated, remote attacker can exploit this vulnerability.

What impact does Cisco-SA-cbr8snmp-zGjkZ9Fc have?

Exploitation of this vulnerability can lead to an overload of the device punt path, resulting in a denial of service.

Vulnerability/
cisco-sa-cbr8snmp-zGjkZ9Fc

high

7.7

CWE

399

22/9/2021

cisco-sa-cbr8snmp-zGjkZ9Fc: Cisco IOS XE Software for Cisco cBR-8 Converged Broadband Routers Simple Network Management Protocol Denial of Service Vulnerability

First published: Wed Sep 22 2021(Updated: )

A vulnerability in the Simple Network Management Protocol (SNMP) punt handling function of Cisco cBR-8 Converged Broadband Routers could allow an authenticated, remote attacker to overload a device punt path, resulting in a denial of service (DoS) condition. This vulnerability is due to the punt path being overwhelmed by large quantities of SNMP requests. An attacker could exploit this vulnerability by sending a large number of SNMP requests to an affected device. A successful exploit could allow the attacker to overload the device punt path, resulting in a DoS condition. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbr8snmp-zGjkZ9Fc This advisory is part of the September 2021 release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication. For a complete list of the advisories and links to them, see Cisco Event Response: September 2021 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication.

Credit: This vulnerability was found during the resolution a Cisco TAC support case

Affected Software	Affected Version	How to fix
Cisco cBR-8 Converged Broadband Router
Cisco IOS XE Software

Never miss a vulnerability like this again

Reference Links

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cbr8snmp-zGjkZ9Fc (Advisory)

Child vulnerabilities

(Contains the following vulnerabilities)

CVE-2021-1623

Frequently Asked Questions

What is the severity of Cisco-SA-cbr8snmp-zGjkZ9Fc?
The vulnerability is rated as critical due to its potential to cause a denial of service (DoS) condition.
How do I fix Cisco-SA-cbr8snmp-zGjkZ9Fc?
To mitigate the vulnerability, apply the recommended software updates provided by Cisco.
What products are affected by Cisco-SA-cbr8snmp-zGjkZ9Fc?
The affected products include Cisco cBR-8 Converged Broadband Routers and Cisco IOS XE Software.
Who can exploit Cisco-SA-cbr8snmp-zGjkZ9Fc?
An authenticated, remote attacker can exploit this vulnerability.
What impact does Cisco-SA-cbr8snmp-zGjkZ9Fc have?
Exploitation of this vulnerability can lead to an overload of the device punt path, resulting in a denial of service.

agent/event
agent/type
agent/last-modified-date
agent/first-publish-date
collector/cisco-advisory
source/Cisco
agent/title
agent/references
agent/remedy
agent/severity
agent/weakness
agent/author
agent/description
agent/source
agent/softwarecombine
agent/tags
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco cbr-8 converged broadband router
canonical/cisco ios xe software