Cisco’s network operating system IOS XE is used on various router models from the manufacturer. However, there have been security gaps in the operating system which could lead to DoS attacks and other malicious activities. If attackers successfully exploit these vulnerabilities, it could lead to devices shutting down or restarting.
To address these concerns, security updates have been made available. Admins are advised to study the warning messages linked below this message carefully and download the necessary security updates that affect their devices as quickly as possible. Specific information on threatened devices and security patches can be found in the warning messages.
Two of the most serious threats associated with these security gaps are the DoS and Root Attacks gaps. Due to insufficient checks, attackers could send prepared data packets to systems which could result in device restarts. Alternatively, they could trigger the system to restart by sending special DHCPv6 messages. Both vulnerabilities have been classified as “high” threat level.
Furthermore, attackers could gain root access to systems due to insufficient restrictions in the IOx application hosting subsystem of IOS XE. This vulnerability has also been classified as “high” threat level.
Another threat is through eavesdropping on API responses. An authenticated attacker could exploit a vulnerability in DNA Center to obtain information. This vulnerability has been classified as “high” threat level as well.
Finally, other security vulnerabilities are found in access point software and SD-WAN. DoS attacks can also be carried out in these systems. It is important to note that the list of security gaps is not exhaustive and admins are advised to be vigilant in identifying and addressing potential threats.
