Total vulnerabilities in the database
The packet-reassembly implementation in Cisco IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (CPU consumption or packet loss) via fragmented (1) IPv4 or (2) IPv6 packets that trigger ATTN-3-SYNC_TIMEOUT errors after reassembly failures, aka Bug ID CSCuo37957.
| Software | From | Fixed in |
|---|---|---|
| cisco / ios_xe | 3.11s.2 | 3.11s.2.x |
| cisco / ios_xe | 2.5.0 | 2.5.0.x |
| cisco / ios_xe | 2.6.1 | 2.6.1.x |
| cisco / ios_xe | 3.13s.0 | 3.13s.0.x |
| cisco / ios_xe | 2.3.1t | 2.3.1t.x |
| cisco / ios_xe | 2.1.0 | 2.1.0.x |
| cisco / ios_xe | 3.10s.0a | 3.10s.0a.x |
| cisco / ios_xe | 2.2.3 | 2.2.3.x |
| cisco / ios_xe | 3.10s.0 | 3.10s.0.x |
| cisco / ios_xe | 2.3.0t | 2.3.0t.x |
| cisco / ios_xe | 2.2.1 | 2.2.1.x |
| cisco / ios_xe | 3.12s.0 | 3.12s.0.x |
| cisco / ios_xe | 2.4.0 | 2.4.0.x |
| cisco / ios_xe | 3.12s.1 | 3.12s.1.x |
| cisco / ios_xe | 2.3.0 | 2.3.0.x |
| cisco / ios_xe | 2.5.1 | 2.5.1.x |
| cisco / ios_xe | 3.10s.2 | 3.10s.2.x |
| cisco / ios_xe | 2.6.2 | 2.6.2.x |
| cisco / ios_xe | 2.1.1 | 2.1.1.x |
| cisco / ios_xe | 3.11s.0 | 3.11s.0.x |
| cisco / ios_xe | 2.4.1 | 2.4.1.x |
| cisco / ios_xe | 3.10s.3 | 3.10s.3.x |
| cisco / ios_xe | 2.3.2 | 2.3.2.x |
| cisco / ios_xe | 2.1.2 | 2.1.2.x |
| cisco / ios_xe | 2.6.0 | 2.6.0.x |
| cisco / ios_xe | 3.11s.1 | 3.11s.1.x |
| cisco / ios_xe | 3.10s.1 | 3.10s.1.x |
| cisco / ios_xe | 2.5.2 | 2.5.2.x |
| cisco / ios_xe | 2.2.2 | 2.2.2.x |