CVE-2023-20049 — Vulnetix

CVE-2023-20049 PUBLISHED

Es existiert eine Schwachstelle in Cisco IOS XR. Diese ist auf den fehlerhaften Umgang mit BFD-Paketen zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.

EPSS 0.54% · 68.1th percentile

Risk Scores

EPSS Score

0.54%

68.1th percentile

Affected Products

Vendor	Product	Versions
Cisco	Cisco IOS XR

Exploit Intelligence

20230308 Cisco IOS XR Software for ASR 9000 Series Routers Bidirectional Forwarding Detection Denial of Service Vulnerability (circl)

Timeline

Mar 8, 2023 CVE Published
Mar 10, 2023 EPSS Score
Apr 18, 2023 EPSS Score
May 27, 2023 EPSS Score
Jul 5, 2023 EPSS Score
Aug 12, 2023 EPSS Score
Sep 20, 2023 EPSS Score
Oct 29, 2023 EPSS Score
Dec 7, 2023 EPSS Score
Feb 23, 2024 EPSS Score
Apr 2, 2024 EPSS Score
May 10, 2024 EPSS Score

References

https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0601.json advisory
https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0601 advisory
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-load-infodisc-9rdOr5Fq advisory
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-bfd-XmRescbT advisory

Open in Interactive Console →