Overview
- Description
- A vulnerability in the Virtual Private LAN Service (VPLS) code of Cisco IOS 15.0 through 15.4 for Cisco Catalyst 6800 Series Switches could allow an unauthenticated, adjacent attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a denial of service (DoS) condition. The vulnerability is due to a memory management issue in the affected software. An attacker could exploit this vulnerability by creating a large number of VPLS-generated MAC entries in the MAC address table of an affected device. A successful exploit could allow the attacker to cause a C6800-16P10G or C6800-16P10G-XL type line card to crash, resulting in a DoS condition. This vulnerability affects Cisco Catalyst 6800 Series Switches that are running a vulnerable release of Cisco IOS Software and have a Cisco C6800-16P10G or C6800-16P10G-XL line card in use with Supervisor Engine 6T. To be vulnerable, the device must also be configured with VPLS and the C6800-16P10G or C6800-16P10G-XL line card needs to be the core-facing MPLS interfaces. Cisco Bug IDs: CSCva61927.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.5
- Impact score
- 3.6
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.3
- Impact score
- 2.9
- Exploitability score
- 6.5
- Vector string
- AV:A/AC:L/Au:N/C:N/I:N/A:P
Known exploits
Data from CISA
- Vulnerability name
- Cisco Catalyst 6800 Series Switches VPLS Denial-of-Service Vulnerability
- Exploit added on
- Mar 3, 2022
- Exploit action due
- Mar 24, 2022
- Required action
- Apply updates per vendor instructions.
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
- ykramarz@cisco.com
- CWE-399
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2C8ACCBC-19E5-4960-84BF-BD6EBAE0AC39",
"versionEndIncluding": "15.4",
"versionStartIncluding": "15.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:c6800-16p10g:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1D782FEB-FF9A-4F41-95BA-88C239656F7D"
},
{
"criteria": "cpe:2.3:h:cisco:c6800-16p10g-xl:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F508C81E-D31B-44BA-82C8-FEDA00324B8B"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "38280588-3CE2-4797-A56A-00256E634C62"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-1:2.2\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1A2AF1C7-23EB-4C13-AC71-4FA7E78E8ED7"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-1:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0BF0BBC8-04BD-4867-B188-35461E50FF16"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-2:2.2\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A2C1E3F7-D48E-4AF1-8205-33EB71E09E09"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-svc-nam-2:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C959C93D-D58C-4AB5-9058-0CF257C68F72"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-x6380-nam:2.1\\(2\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4FDB5EAC-E41D-4A15-B059-45B4BE4813EC"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6000_ws-x6380-nam:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E2DF345D-AD8A-4DE6-8136-6EF7B011E4B1"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DEFBFA86-64F2-4CB0-99E1-FAEFCA690FF8"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "15B48565-92C7-4AE1-AE3A-6FF7DD010745"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:2.2\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EC58B690-8D30-4A04-82AA-A827F87DEE02"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E6BED8BD-79D2-4DD9-A895-66A8C9349F62"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:2.2\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "41491D13-A3F9-464A-A84B-A58320838CBD"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "9E0747C3-2712-4FA9-92E3-260B3CF080DC"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:2.1\\(2\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "CFF4CBFF-56C4-4411-9F12-2506C3DD563E"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:3.1\\(1a\\):*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DD4D3F34-A1B3-4469-BF21-666FDAE9198B"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6503-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F202892E-2E58-4D77-B983-38AFA51CDBC6"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6504-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7F57DF3E-4069-4EF0-917E-84CDDFCEBEEF"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6506-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0BE25114-ABBC-47A0-9C20-E8D40D721313"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6509-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "FADD5F49-2817-40EC-861C-C922825708BD"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6509-neb-a:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E628F9C4-98C6-4A95-AF81-F1E6A56E8648"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6509-v-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4AFF899C-1EB3-46D8-9003-EA36A68C90B3"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6513:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E6463491-F63E-44CB-A1D4-C029BE7D3D3D"
},
{
"criteria": "cpe:2.3:h:cisco:catalyst_6513-e:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D8668D34-096B-4FC3-B9B1-0ECFD6265778"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]