cisco-sa-snmp-uhv6ZDeF: Cisco IOS XR Software SNMP Management Plane Protection ACL Bypass Vulnerability
First published: Wed Mar 13 2024(Updated: )
A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to bypass configured management plane protection policies and access the Simple Network Management Plane (SNMP) server of an affected device.This vulnerability is due
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco IOS XRv 9000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-snmp-uhv6ZDeF?
The cisco-sa-snmp-uhv6ZDeF vulnerability is rated as high severity.
How do I fix cisco-sa-snmp-uhv6ZDeF?
To fix cisco-sa-snmp-uhv6ZDeF, apply the available patches and updates from Cisco for the affected IOS XR Software.
What devices are affected by cisco-sa-snmp-uhv6ZDeF?
Devices running Cisco IOS XR Software are affected by the cisco-sa-snmp-uhv6ZDeF vulnerability.
Can cisco-sa-snmp-uhv6ZDeF be exploited remotely?
cisco-sa-snmp-uhv6ZDeF can be exploited by an unauthenticated, adjacent attacker.
What type of access does cisco-sa-snmp-uhv6ZDeF allow?
cisco-sa-snmp-uhv6ZDeF allows attackers to bypass management plane protection and access the SNMP server.
- collector/cisco-recent
- source/Cisco
- agent/severity
- agent/title
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ios xrv 9000