CVE-2019-16022

Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerabilities are due to incorrect processing of BGP update messages that contain crafted EVPN attributes. An attacker could exploit these vulnerabilities by sending BGP EVPN update messages with malformed attributes to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic only from explicitly defined peers. To exploit these vulnerabilities, the malicious BGP update message would need to come from a configured, valid BGP peer, or would need to be injected by the attacker into the victim's BGP network on an existing, valid TCP connection to a BGP peer.

CVSS v3 8.6 HIGH
CVSS v2.0 5.0 MEDIUM

8.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200122-ios-xr-evpn	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:ios_xr:6.6.1:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:asr_9000v:-::::::x64:
	cpe:2.3:h:cisco:asr_9001:-::::::x64:
	cpe:2.3:h:cisco:asr_9006:-::::::x64:
	cpe:2.3:h:cisco:asr_9010:-::::::x64:
	cpe:2.3:h:cisco:asr_9901:-::::::x64:
	cpe:2.3:h:cisco:asr_9904:-::::::x64:
	cpe:2.3:h:cisco:asr_9906:-::::::x64:
	cpe:2.3:h:cisco:asr_9910:-::::::x64:
	cpe:2.3:h:cisco:asr_9912:-::::::x64:
	cpe:2.3:h:cisco:asr_9922:-::::::x64:
	cpe:2.3:h:cisco:ncs_540:-:::::::*
	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*
	cpe:2.3:h:cisco:ncs_6000:-:::::::*

Configuration 2 (hide)

AND

cpe:2.3:o:cisco:ios_xr:6.6.2:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:asr_9000v:-:::::::*
	cpe:2.3:h:cisco:asr_9000v:-::::::x64:
	cpe:2.3:h:cisco:asr_9001:-:::::::*
	cpe:2.3:h:cisco:asr_9001:-::::::x64:
	cpe:2.3:h:cisco:asr_9006:-:::::::*
	cpe:2.3:h:cisco:asr_9006:-::::::x64:
	cpe:2.3:h:cisco:asr_9010:-:::::::*
	cpe:2.3:h:cisco:asr_9010:-::::::x64:
	cpe:2.3:h:cisco:asr_9901:-:::::::*
	cpe:2.3:h:cisco:asr_9901:-::::::x64:
	cpe:2.3:h:cisco:asr_9904:-:::::::*
	cpe:2.3:h:cisco:asr_9904:-::::::x64:
	cpe:2.3:h:cisco:asr_9906:-:::::::*
	cpe:2.3:h:cisco:asr_9906:-::::::x64:
	cpe:2.3:h:cisco:asr_9910:-:::::::*
	cpe:2.3:h:cisco:asr_9910:-::::::x64:
	cpe:2.3:h:cisco:asr_9912:-:::::::*
	cpe:2.3:h:cisco:asr_9912:-::::::x64:
	cpe:2.3:h:cisco:asr_9922:-:::::::*
	cpe:2.3:h:cisco:asr_9922:-::::::x64:
	cpe:2.3:h:cisco:crs:-:::::::*
	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*
	cpe:2.3:h:cisco:xrv_9000:-:::::::*

Configuration 3 (hide)

AND

cpe:2.3:o:cisco:ios_xr:6.6.25:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:ncs_540:-:::::::*
	cpe:2.3:h:cisco:ncs_540l:-:::::::*
	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*
	cpe:2.3:h:cisco:ncs_560:-:::::::*
	cpe:2.3:h:cisco:ncs_6000:-:::::::*

Configuration 4 (hide)

AND

cpe:2.3:o:cisco:ios_xr:7.0.1:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:asr_9000v:-::::::x64:
	cpe:2.3:h:cisco:asr_9001:-::::::x64:
	cpe:2.3:h:cisco:asr_9006:-::::::x64:
	cpe:2.3:h:cisco:asr_9010:-::::::x64:
	cpe:2.3:h:cisco:asr_9901:-::::::x64:
	cpe:2.3:h:cisco:asr_9904:-::::::x64:
	cpe:2.3:h:cisco:asr_9906:-::::::x64:
	cpe:2.3:h:cisco:asr_9910:-::::::x64:
	cpe:2.3:h:cisco:asr_9912:-::::::x64:
	cpe:2.3:h:cisco:asr_9922:-::::::x64:
	cpe:2.3:h:cisco:ncs_1001:-:::::::*
	cpe:2.3:h:cisco:ncs_1002:-:::::::*
	cpe:2.3:h:cisco:ncs_1004:-:::::::*
	cpe:2.3:h:cisco:ncs_5001:-:::::::*
	cpe:2.3:h:cisco:ncs_5002:-:::::::*
	cpe:2.3:h:cisco:ncs_540:-:::::::*
	cpe:2.3:h:cisco:ncs_540l:-:::::::*
	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*
	cpe:2.3:h:cisco:ncs_560:-:::::::*
	cpe:2.3:h:cisco:ncs_6000:-:::::::*
	cpe:2.3:h:cisco:xrv_9000:-:::::::*

History

No history.

Information

Published : 2020-01-26 05:15

Updated : 2023-12-10 13:13

NVD link : CVE-2019-16022

Mitre link : CVE-2019-16022

CVE.ORG link : CVE-2019-16022

JSON object : View

Products Affected

cisco

asr_9001
asr_9000v
ncs_5501
asr_9922
crs
asr_9912
ncs_540l
asr_9910
ncs_540
ncs_1002
asr_9901
asr_9906
asr_9006
ncs_1001
ncs_5502-se
ncs_5002
xrv_9000
ncs_5502
ncs_5001
ios_xr
ncs_1004
ncs_5501-se
asr_9904
ncs_5516
ncs_6000
ncs_5508
ncs_560
asr_9010

CWE

CWE-400

Uncontrolled Resource Consumption

CWE-399

Resource Management Errors

8.6 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2019-16022

8.6^/10

5.0^/10

Attach tags to `CVE-2019-16022`