Cisco IOS XR Software Discovery Protocol DoS (cisco-sa-xr-cdp-wnALzvT2)

medium Nessus Plugin ID 165241

Synopsis

The remote device is missing a vendor-supplied security patch

Description

A vulnerability Cisco IOS XR can allow an unauthenticated, network-adjacent attacker to cause a denial of service (DoS) condition on an affected device. If the Cisco Discovery Protocol (CDP) is in use, an attacker can cause a heap buffer overflow resulting in a restart of the CDP process.

Please see the included Cisco BIDs and Cisco Security Advisory for more information.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number

Solution

Upgrade to the relevant fixed version referenced in Cisco bug ID CSCwb23263

See Also

http://www.nessus.org/u?6fe1a143

https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-74840

https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwb23263

Plugin Details

Severity: Medium

ID: 165241

File Name: cisco-sa-xr-cdp-wnALzvT2-iosxr.nasl

Version: 1.4

Type: combined

Family: CISCO

Published: 9/19/2022

Updated: 3/15/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: CVE-2022-20846

CVSS v3

Risk Factor: Medium

Base Score: 4.3

Temporal Score: 3.8

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:cisco:ios_xr

Required KB Items: Host/Cisco/IOS-XR/Version

Exploit Ease: No known exploits are available

Patch Publication Date: 9/14/2022

Vulnerability Publication Date: 9/14/2022

Reference Information

CVE: CVE-2022-20846

CWE: 120

CISCO-SA: cisco-sa-xr-cdp-wnALzvT2

IAVA: 2022-A-0380-S

CISCO-BUG-ID: CSCwb23263