Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device.
For more information about these vulnerabilities, see the Details [“#details”] section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdwan-dosmulti-48jJuEUP”]
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | cisco_ios_xe_software | any | cpe:2.3:a:cisco:cisco_ios_xe_software:any:*:*:*:*:*:*:* |
cisco | sd-wan_solution | any | cpe:2.3:a:cisco:sd-wan_solution:any:*:*:*:*:*:*:* |
cisco | sd-wan_vmanage | any | cpe:2.3:a:cisco:sd-wan_vmanage:any:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan | 16.9 | cpe:2.3:o:cisco:ios_xe_sd-wan:16.9:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan | 16.10 | cpe:2.3:o:cisco:ios_xe_sd-wan:16.10:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan | 16.11 | cpe:2.3:o:cisco:ios_xe_sd-wan:16.11:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan | 16.12 | cpe:2.3:o:cisco:ios_xe_sd-wan:16.12:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan_16.12.1b_when_installed_on_1100_series_industrial_integrated_services | any | cpe:2.3:o:cisco:ios_xe_sd-wan_16.12.1b_when_installed_on_1100_series_industrial_integrated_services:any:*:*:*:*:*:*:* |
cisco | cloud_services_router_1000v_firmware | any | cpe:2.3:o:cisco:cloud_services_router_1000v_firmware:any:*:*:*:*:*:*:* |
cisco | ios_xe_sd-wan_16.10.4_when_installed_on_1000_series_integrated_services | any | cpe:2.3:o:cisco:ios_xe_sd-wan_16.10.4_when_installed_on_1000_series_integrated_services:any:*:*:*:*:*:*:* |