March 14, 2024 at 09:15AM
Cisco announced patches for multiple high-severity vulnerabilities in IOS RX software, addressing DoS and privilege elevation risks. Vulnerabilities include flaws in SSH, line cards with Layer 2 services, and PPPoE termination in ASR 9000 series routers. The fixes are part of the March 2024 IOS RX security advisories bundle, also covering medium-severity vulnerabilities. Cisco reported no known exploitation of these issues.
From the meeting notes, I have gathered that Cisco has announced patches for multiple vulnerabilities in IOS RX software. These vulnerabilities include three high-severity flaws that can lead to denial-of-service (DoS) and elevation of privilege.
The most severe of these high-severity bugs is CVE-2024-20320, which is an issue in the SSH feature of IOS RX that could allow attackers to elevate privileges to root by sending crafted SSH commands to the CLI.
The second high-severity flaw, tracked as CVE-2024-20318, impacts line cards with the Layer 2 services feature enabled. An attacker could send specific Ethernet frames through a vulnerable device to cause the line card network processor to reset, leading to a DoS condition.
Additionally, Cisco patched CVE-2024-20327, a high-severity DoS bug impacting the PPP over Ethernet (PPPoE) termination feature of ASR 9000 series routers. Improper handling of malformed PPPoE packets allows an attacker to crash the ppp_ma process, causing a DoS condition for PPPoE traffic.
Furthermore, the company also fixed several medium-severity vulnerabilities in IOS XR software that could allow attackers to bypass protections, cause a DoS condition, or install unverified software images.
It’s important to note that Cisco has not mentioned any of these vulnerabilities being exploited in the wild. Full details and additional information can be found on Cisco’s security advisories page.
If there are specific actions or follow-ups required regarding this information, please let me know, and I can assist further.