Published: 24/03/2021 Updated: 07/11/2023

CVSS v2 Base Score: 2.9 | Impact Score: 2.9 | Exploitability Score: 5.5

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 258

Vector: AV:A/AC:M/Au:N/C:N/I:N/A:P

A vulnerability in the DECnet Phase IV and DECnet/OSI protocol processing of Cisco IOS XE Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input validation of DECnet traffic that is received by an affected device. An attacker could exploit this vulnerability by sending DECnet traffic to an affected device. A successful exploit could allow the malicious user to cause the affected device to reload, resulting in a DoS condition.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios xe 16.6.1
cisco ios xe 16.4.1
cisco ios xe 16.5.1
cisco ios xe 16.5.1a
cisco ios xe 16.5.1b
cisco ios xe 16.4.2
cisco ios xe 16.6.3
cisco ios xe 16.8.1
cisco ios xe 16.7.1
cisco ios xe 16.6.2
cisco ios xe 16.9.1
cisco ios xe 16.5.2
cisco ios xe 16.8.1a
cisco ios xe 16.8.1s
cisco ios xe 16.8.1b
cisco ios xe 16.8.2
cisco ios xe 16.7.2
cisco ios xe 16.7.3
cisco ios xe 16.8.1c
cisco ios xe 16.4.3
cisco ios xe 16.9.1s
cisco ios xe 16.9.1c
cisco ios xe 16.9.1b
cisco ios xe 16.5.3
cisco ios xe 16.9.1d
cisco ios xe 16.6.4s
cisco ios xe 16.6.4
cisco ios xe 16.10.1
cisco ios xe 16.9.1a
cisco ios xe 16.9.2a
cisco ios xe 16.9.2
cisco ios xe 16.6.4a
cisco ios xe 16.12.1
cisco ios xe 16.6.5
cisco ios xe 16.11.1
cisco ios xe 17.1.1
cisco ios xe 16.11.1a
cisco ios xe 16.12.1c
cisco ios xe 16.12.1t
cisco ios xe 16.11.2
cisco ios xe 16.12.1s
cisco ios xe 16.12.1a
cisco ios xe 16.11.1c
cisco ios xe 16.11.1b
cisco ios xe 16.11.1s
cisco ios xe 16.10.1s
cisco ios xe 16.9.2s
cisco ios xe 16.6.6
cisco ios xe 16.9.3h
cisco ios xe 16.6.5b
cisco ios xe 16.6.5a
cisco ios xe 16.9.3a
cisco ios xe 16.10.1a
cisco ios xe 16.10.2
cisco ios xe 16.9.3
cisco ios xe 16.10.1e
cisco ios xe 16.10.1b
cisco ios xe 16.8.3
cisco ios xe 16.9.3s
cisco ios xe 16.9.4
cisco ios xe 16.12.2
cisco ios xe 16.6.7a
cisco ios xe 16.9.4c
cisco ios xe 16.12.2a
cisco ios xe 16.6.7
cisco ios xe 16.10.3
cisco ios xe 16.12.4
cisco ios xe 16.9.5
cisco ios xe 16.9.5f
cisco ios xe 16.6.8
cisco ios xe 16.12.3
cisco ios xe 17.2.1
cisco ios xe 17.1.1s
cisco ios xe 16.12.2t
cisco ios xe 17.1.1a
cisco ios xe 16.12.2s
cisco ios xe 16.12.3a
cisco ios xe 17.1.1t
cisco ios xe 17.2.1a
cisco ios xe 17.2.1v
cisco ios xe 16.12.3s
cisco ios xe 17.2.1r
cisco ios xe 17.1.2
cisco ios xe 16.12.4a
cisco ios xe 17.2.2
cisco ios xe 17.3.1
cisco ios xe 17.3.1a
cisco ios xe 17.2.3
cisco ios xe 16.9.6

A vulnerability in the DECnet Phase IV and DECnet/OSI protocol processing of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device The vulnerability is due to insufficient input validation of DECnet traffic that is received by an affected device An attacker could ...

CWE-119 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-decnet-dos-cuPWDkyL https://nvd.nist.gov https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-decnet-dos-cuPWDkyL

CVE-2021-1352

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect