CVE-2024-20311

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Mar 27, 2024
CWE ID 674

Summary

CVE-2024-20311 is a vulnerability affecting the Locator ID Separation Protocol (LISP) feature in Cisco IOS Software and Cisco IOS XE Software. An unauthenticated, remote attacker can exploit this issue by sending a specially crafted LISP packet, leading to a device reload and causing a denial of service (DoS) condition. This vulnerability poses a threat over both IPv4 and IPv6 networks. The vulnerability arises due to the incorrect handling of LISP packets by the affected devices.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share