vulnerability

Cisco XE: CVE-2021-34697: Cisco IOS XE Software Protection Against Distributed Denial of Service Attacks Feature Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Sep 22, 2021	Jan 18, 2022	May 21, 2024

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Sep 22, 2021

Added

Jan 18, 2022

Modified

May 21, 2024

Description

A vulnerability in the Protection Against Distributed Denial of Service Attacks feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct denial of service (DoS) attacks to or through the affected device. This vulnerability is due to incorrect programming of the half-opened connections limit, TCP SYN flood limit, or TCP SYN cookie features when the features are configured in vulnerable releases of Cisco IOS XE Software. An attacker could exploit this vulnerability by attempting to flood traffic to or through the affected device. A successful exploit could allow the attacker to initiate a DoS attack to or through an affected device.

Solution

cisco-xe-update-latest

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today