CVE-2021-34720

A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process to crash, resulting in a denial of service (DoS) condition. This vulnerability exists because socket creation failures are mishandled during the IP SLA and TWAMP processes. An attacker could exploit this vulnerability by sending specific IP SLA or TWAMP packets to an affected device. A successful exploit could allow the attacker to exhaust the packet memory, which will impact other processes, such as routing protocols, or crash the IP SLA process.

CVSS v3 8.6 HIGH
CVSS v2.0 4.3 MEDIUM

8.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

4.3^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-ZA3SRrpP	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:asr_9000v-v2:-:::::::*
	cpe:2.3:h:cisco:asr_9001:-:::::::*
	cpe:2.3:h:cisco:asr_9006:-:::::::*
	cpe:2.3:h:cisco:asr_9010:-:::::::*
	cpe:2.3:h:cisco:asr_9901:-:::::::*
	cpe:2.3:h:cisco:asr_9902:-:::::::*
	cpe:2.3:h:cisco:asr_9903:-:::::::*
	cpe:2.3:h:cisco:asr_9904:-:::::::*
	cpe:2.3:h:cisco:asr_9906:-:::::::*
	cpe:2.3:h:cisco:asr_9910:-:::::::*
	cpe:2.3:h:cisco:asr_9912:-:::::::*
	cpe:2.3:h:cisco:asr_9922:-:::::::*

Configuration 2 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ios_xrv:-:::::::*
	cpe:2.3:h:cisco:ios_xrv_9000:-:::::::*

Configuration 3 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_520:-:::::::*
	cpe:2.3:h:cisco:ncs_540:-:::::::*
	cpe:2.3:h:cisco:ncs_540_fronthaul:-:::::::*
	cpe:2.3:h:cisco:ncs_560-4:-:::::::*
	cpe:2.3:h:cisco:ncs_560-7:-:::::::*

Configuration 4 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_5001:-:::::::*
	cpe:2.3:h:cisco:ncs_5002:-:::::::*
	cpe:2.3:h:cisco:ncs_5011:-:::::::*

Configuration 5 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_4009:-:::::::*
	cpe:2.3:h:cisco:ncs_4016:-:::::::*

Configuration 6 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_5501:-:::::::*
	cpe:2.3:h:cisco:ncs_5501-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5502:-:::::::*
	cpe:2.3:h:cisco:ncs_5502-se:-:::::::*
	cpe:2.3:h:cisco:ncs_5508:-:::::::*
	cpe:2.3:h:cisco:ncs_5516:-:::::::*

Configuration 7 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_6000:-:::::::*
	cpe:2.3:h:cisco:ncs_6008:-:::::::*

Configuration 8 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:ncs_1001:-:::::::*
	cpe:2.3:h:cisco:ncs_1002:-:::::::*
	cpe:2.3:h:cisco:ncs_1004:-:::::::*

Configuration 9 (hide)

AND

OR	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::
	cpe:2.3:o:cisco:ios_xr::::::::

OR	cpe:2.3:h:cisco:8101-32fh:-:::::::*
	cpe:2.3:h:cisco:8101-32h:-:::::::*
	cpe:2.3:h:cisco:8102-64h:-:::::::*
	cpe:2.3:h:cisco:8201:-:::::::*
	cpe:2.3:h:cisco:8201-32fh:-:::::::*
	cpe:2.3:h:cisco:8202:-:::::::*
	cpe:2.3:h:cisco:8804:-:::::::*
	cpe:2.3:h:cisco:8808:-:::::::*
	cpe:2.3:h:cisco:8812:-:::::::*
	cpe:2.3:h:cisco:8818:-:::::::*

History

25 Oct 2022, 18:04

Type	Values Removed	Values Added
CWE	~~CWE-400~~	NVD-CWE-Other

22 Sep 2021, 14:56

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 4.3 v3 : 8.6
CPE		cpe:2.3:h:cisco:asr_9912:-:::::::* cpe:2.3:h:cisco:asr_9006:-:::::::* cpe:2.3:h:cisco:ncs_4009:-:::::::* cpe:2.3:h:cisco:ncs_1002:-:::::::* cpe:2.3:h:cisco:8804:-:::::::* cpe:2.3:h:cisco:ios_xrv_9000:-:::::::* cpe:2.3:h:cisco:ncs_560-7:-:::::::* cpe:2.3:h:cisco:ncs_520:-:::::::* cpe:2.3:h:cisco:asr_9010:-:::::::* cpe:2.3:h:cisco:ios_xrv:-:::::::* cpe:2.3:h:cisco:asr_9904:-:::::::* cpe:2.3:h:cisco:8202:-:::::::* cpe:2.3:h:cisco:8201:-:::::::* cpe:2.3:h:cisco:ncs_5502-se:-:::::::* cpe:2.3:h:cisco:asr_9922:-:::::::* cpe:2.3:h:cisco:ncs_5011:-:::::::* cpe:2.3:h:cisco:ncs_5001:-:::::::* cpe:2.3:h:cisco:ncs_6008:-:::::::* cpe:2.3:h:cisco:8201-32fh:-:::::::* cpe:2.3:h:cisco:ncs_1001:-:::::::* cpe:2.3:h:cisco:asr_9903:-:::::::* cpe:2.3:h:cisco:asr_9001:-:::::::* cpe:2.3:h:cisco:8808:-:::::::* cpe:2.3:h:cisco:ncs_1004:-:::::::* cpe:2.3:h:cisco:8818:-:::::::* cpe:2.3:h:cisco:8102-64h:-:::::::* cpe:2.3:h:cisco:ncs_4016:-:::::::* cpe:2.3:h:cisco:ncs_5002:-:::::::* cpe:2.3:h:cisco:ncs_6000:-:::::::* cpe:2.3:h:cisco:ncs_5502:-:::::::* cpe:2.3:h:cisco:ncs_5516:-:::::::* cpe:2.3:h:cisco:ncs_5501-se:-:::::::* cpe:2.3:h:cisco:ncs_5501:-:::::::* cpe:2.3:h:cisco:asr_9000v-v2:-:::::::* cpe:2.3:h:cisco:ncs_560-4:-:::::::* cpe:2.3:h:cisco:asr_9901:-:::::::* cpe:2.3:o:cisco:ios_xr:::::::: cpe:2.3:h:cisco:ncs_540:-:::::::* cpe:2.3:h:cisco:ncs_540_fronthaul:-:::::::* cpe:2.3:h:cisco:asr_9902:-:::::::* cpe:2.3:h:cisco:8101-32h:-:::::::* cpe:2.3:h:cisco:asr_9910:-:::::::* cpe:2.3:h:cisco:asr_9906:-:::::::* cpe:2.3:h:cisco:8101-32fh:-:::::::* cpe:2.3:h:cisco:8812:-:::::::* cpe:2.3:h:cisco:ncs_5508:-:::::::*
CWE		CWE-400
References	~~(CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-ZA3SRrpP -~~	(CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-ZA3SRrpP - Vendor Advisory

09 Sep 2021, 06:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-09-09 05:15

Updated : 2023-12-10 14:09

NVD link : CVE-2021-34720

Mitre link : CVE-2021-34720

CVE.ORG link : CVE-2021-34720

JSON object : View

Products Affected

cisco

8102-64h
8101-32h
ncs_5502
ncs_1004
ncs_5508
ios_xrv_9000
8101-32fh
asr_9902
ncs_4009
asr_9010
ncs_5002
8804
asr_9912
ncs_5001
ncs_520
8818
8202
ios_xr
ncs_1002
ncs_5011
asr_9006
ncs_5516
ncs_4016
ios_xrv
ncs_6000
ncs_5501
asr_9904
asr_9901
asr_9910
8201-32fh
ncs_6008
asr_9903
ncs_540
ncs_560-7
asr_9922
asr_9000v-v2
ncs_560-4
8201
8808
asr_9906
ncs_1001
8812
ncs_540_fronthaul
asr_9001
ncs_5502-se
ncs_5501-se

CWE

NVD-CWE-Other CWE-771

Missing Reference to Active Allocated Resource

8.6 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

4.3 /10

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-34720

8.6^/10

4.3^/10

Attach tags to `CVE-2021-34720`