CVE-2024-20259

Summary

CVE-2024-20259 is a newly disclosed vulnerability affecting the DHCP snooping feature of Cisco IOS XE Software. This issue allows unauthenticated, remote attackers to trigger an unexpected reload of an affected device, causing a denial of service (DoS) condition. The vulnerability arises when a crafted IPv4 DHCP request packet is mishandled, particularly when endpoint analytics are enabled. An attacker can exploit this flaw by transmitting a maliciously designed DHCP request through the network, potentially leading to the targeted device reloading and becoming unavailable. Notably, this vulnerability can be exploited from any network that utilizes a DHCP relay, expanding the potential attack vector beyond the adjacent network.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.