Cisco SD-WAN vEdge Routers Denial of Service Vulnerability

2020-07-1516:00:00

tools.cisco.com

EPSS

0.001

Percentile

25.0%

JSON

A vulnerability in the deep packet inspection (DPI) engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system.

The vulnerability is due to insufficient handling of malformed packets. An attacker could exploit this vulnerability by sending crafted packets through an affected device. A successful exploit could allow the attacker to cause the device to reboot, resulting in a DoS condition.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vedgfpdos-PkqQrnwV [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-vedgfpdos-PkqQrnwV”]

Affected configurations

Vulners

Node

ciscosd-wan_vedge_routerMatchany

ciscosd-wan_vedge_cloudMatchany

ciscosd-wan_vedge_routerMatchany

ciscosd-wan_vedge_cloudMatchany

VendorProductVersionCPE
ciscosd-wan_vedge_routeranycpe:2.3:a:cisco:sd-wan_vedge_router:any:*:*:*:*:*:*:*
ciscosd-wan_vedge_cloudanycpe:2.3:a:cisco:sd-wan_vedge_cloud:any:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	sd-wan_vedge_router	any	cpe:2.3:a:cisco:sd-wan_vedge_router:any:::::::*
cisco	sd-wan_vedge_cloud	any	cpe:2.3:a:cisco:sd-wan_vedge_cloud:any:::::::*