cisco-sa-pak-mem-exhst-3ke9FeFy: Cisco IOS XR Software UDP Packet Memory Exhaustion Vulnerability
First published: Wed Sep 11 2024(Updated: )
A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device.This vulnerability exists because the Mtrace2 code does not properly handle packet
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XRv 9000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-pak-mem-exhst-3ke9FeFy?
The severity of cisco-sa-pak-mem-exhst-3ke9FeFy is classified as critical.
What impact does cisco-sa-pak-mem-exhst-3ke9FeFy have on affected devices?
cisco-sa-pak-mem-exhst-3ke9FeFy can lead to the exhaustion of UDP packet memory, potentially causing device instability.
How do I fix cisco-sa-pak-mem-exhst-3ke9FeFy?
To fix cisco-sa-pak-mem-exhst-3ke9FeFy, update your Cisco IOS XR Software to the latest patched version as recommended by Cisco.
Who is affected by cisco-sa-pak-mem-exhst-3ke9FeFy?
Devices running the affected versions of Cisco IOS XR Software with the multicast traceroute feature enabled are susceptible to cisco-sa-pak-mem-exhst-3ke9FeFy.
Can cisco-sa-pak-mem-exhst-3ke9FeFy be exploited remotely?
Yes, cisco-sa-pak-mem-exhst-3ke9FeFy can be exploited by an unauthenticated remote attacker.
- collector/cisco-recent
- source/Cisco
- agent/title
- agent/severity
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xrv 9000