CVE-2024-20309 - Vulnerability Details

A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding. This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-03-27T17:02:19.749Z

Updated: 2024-08-09T18:34:29.824Z

Reserved: 2023-11-08T15:08:07.631Z

Link: CVE-2024-20309

Vulnrichment

Updated: 2024-08-01T21:59:41.337Z

NVD

Status : Awaiting Analysis

Published: 2024-03-27T17:15:52.260

Modified: 2024-11-21T08:52:19.290

Link: CVE-2024-20309

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-20309", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "state": "PUBLISHED", "assignerShortName": "cisco", "dateReserved": "2023-11-08T15:08:07.631Z", "datePublished": "2024-03-27T17:02:19.749Z", "dateUpdated": "2024-08-09T18:34:29.824Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-03-27T17:02:19.749Z"}, "descriptions": [{"lang": "en", "value": "A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding.\r\n\r This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition."}], "affected": [{"vendor": "Cisco", "product": "Cisco IOS XE Software", "versions": [{"version": "3.7.0S", "status": "affected"}, {"version": "3.7.1S", "status": "affected"}, {"version": "3.7.2S", "status": "affected"}, {"version": "3.7.3S", "status": "affected"}, {"version": "3.7.4S", "status": "affected"}, {"version": "3.7.5S", "status": "affected"}, {"version": "3.7.6S", "status": "affected"}, {"version": "3.7.7S", "status": "affected"}, {"version": "3.7.4aS", "status": "affected"}, {"version": "3.7.2tS", "status": "affected"}, {"version": "3.7.0bS", "status": "affected"}, {"version": "3.7.1aS", "status": "affected"}, {"version": "3.8.0S", "status": "affected"}, {"version": "3.8.1S", "status": "affected"}, {"version": "3.8.2S", "status": "affected"}, {"version": "3.9.1S", "status": "affected"}, {"version": "3.9.0S", "status": "affected"}, {"version": "3.9.2S", "status": "affected"}, {"version": "3.9.1aS", "status": "affected"}, {"version": "3.9.0aS", "status": "affected"}, {"version": "3.2.0SE", "status": "affected"}, {"version": "3.2.1SE", "status": "affected"}, {"version": "3.2.2SE", "status": "affected"}, {"version": "3.2.3SE", "status": "affected"}, {"version": "3.3.0SE", "status": "affected"}, {"version": "3.3.1SE", "status": "affected"}, {"version": "3.3.2SE", "status": "affected"}, {"version": "3.3.3SE", "status": "affected"}, {"version": "3.3.4SE", "status": "affected"}, {"version": "3.3.5SE", "status": "affected"}, {"version": "3.10.0S", "status": "affected"}, {"version": "3.10.1S", "status": "affected"}, {"version": "3.10.2S", "status": "affected"}, {"version": "3.10.3S", "status": "affected"}, {"version": "3.10.4S", "status": "affected"}, {"version": "3.10.5S", "status": "affected"}, {"version": "3.10.6S", "status": "affected"}, {"version": "3.10.2tS", "status": "affected"}, {"version": "3.10.7S", "status": "affected"}, {"version": "3.10.1xbS", "status": "affected"}, {"version": "3.10.8S", "status": "affected"}, {"version": "3.10.8aS", "status": "affected"}, {"version": "3.10.9S", "status": "affected"}, {"version": "3.10.10S", "status": "affected"}, {"version": "3.11.1S", "status": "affected"}, {"version": "3.11.2S", "status": "affected"}, {"version": "3.11.0S", "status": "affected"}, {"version": "3.11.3S", "status": "affected"}, {"version": "3.11.4S", "status": "affected"}, {"version": "3.12.0S", "status": "affected"}, {"version": "3.12.1S", "status": "affected"}, {"version": "3.12.2S", "status": "affected"}, {"version": "3.12.3S", "status": "affected"}, {"version": "3.12.0aS", "status": "affected"}, {"version": "3.12.4S", "status": "affected"}, {"version": "3.13.0S", "status": "affected"}, {"version": "3.13.1S", "status": "affected"}, {"version": "3.13.2S", "status": "affected"}, {"version": "3.13.3S", "status": "affected"}, {"version": "3.13.4S", "status": "affected"}, {"version": "3.13.5S", "status": "affected"}, {"version": "3.13.2aS", "status": "affected"}, {"version": "3.13.0aS", "status": "affected"}, {"version": "3.13.5aS", "status": "affected"}, {"version": "3.13.6S", "status": "affected"}, {"version": "3.13.7S", "status": "affected"}, {"version": "3.13.6aS", "status": "affected"}, {"version": "3.13.7aS", "status": "affected"}, {"version": "3.13.8S", "status": "affected"}, {"version": "3.13.9S", "status": "affected"}, {"version": "3.13.10S", "status": "affected"}, {"version": "3.6.2aE", "status": "affected"}, {"version": "3.6.2E", "status": "affected"}, {"version": "3.6.5bE", "status": "affected"}, {"version": "3.6.7bE", "status": "affected"}, {"version": "3.6.9E", "status": "affected"}, {"version": "3.6.10E", "status": "affected"}, {"version": "3.14.0S", "status": "affected"}, {"version": "3.14.1S", "status": "affected"}, {"version": "3.14.2S", "status": "affected"}, {"version": "3.14.3S", "status": "affected"}, {"version": "3.14.4S", "status": "affected"}, {"version": "3.15.0S", "status": "affected"}, {"version": "3.15.1S", "status": "affected"}, {"version": "3.15.2S", "status": "affected"}, {"version": "3.15.1cS", "status": "affected"}, {"version": "3.15.3S", "status": "affected"}, {"version": "3.15.4S", "status": "affected"}, {"version": "3.3.0SQ", "status": "affected"}, {"version": "3.3.1SQ", "status": "affected"}, {"version": "3.4.0SQ", "status": "affected"}, {"version": "3.4.1SQ", "status": "affected"}, {"version": "3.5.0SQ", "status": "affected"}, {"version": "3.5.1SQ", "status": "affected"}, {"version": "3.5.2SQ", "status": "affected"}, {"version": "3.5.3SQ", "status": "affected"}, {"version": "3.5.4SQ", "status": "affected"}, {"version": "3.5.5SQ", "status": "affected"}, {"version": "3.5.6SQ", "status": "affected"}, {"version": "3.5.7SQ", "status": "affected"}, {"version": "3.5.8SQ", "status": "affected"}, {"version": "3.16.0S", "status": "affected"}, {"version": "3.16.1S", "status": "affected"}, {"version": "3.16.1aS", "status": "affected"}, {"version": "3.16.2S", "status": "affected"}, {"version": "3.16.2aS", "status": "affected"}, {"version": "3.16.0cS", "status": "affected"}, {"version": "3.16.3S", "status": "affected"}, {"version": "3.16.2bS", "status": "affected"}, {"version": "3.16.3aS", "status": "affected"}, {"version": "3.16.4S", "status": "affected"}, {"version": "3.16.4aS", "status": "affected"}, {"version": "3.16.4bS", "status": "affected"}, {"version": "3.16.5S", "status": "affected"}, {"version": "3.16.4dS", "status": "affected"}, {"version": "3.16.6S", "status": "affected"}, {"version": "3.16.7S", "status": "affected"}, {"version": "3.16.6bS", "status": "affected"}, {"version": "3.16.7aS", "status": "affected"}, {"version": "3.16.7bS", "status": "affected"}, {"version": "3.16.8S", "status": "affected"}, {"version": "3.16.9S", "status": "affected"}, {"version": "3.16.10S", "status": "affected"}, {"version": "3.17.0S", "status": "affected"}, {"version": "3.17.1S", "status": "affected"}, {"version": "3.17.2S", "status": "affected"}, {"version": "3.17.1aS", "status": "affected"}, {"version": "3.17.3S", "status": "affected"}, {"version": "3.17.4S", "status": "affected"}, {"version": "16.1.1", "status": "affected"}, {"version": "16.1.2", "status": "affected"}, {"version": "16.1.3", "status": "affected"}, {"version": "16.2.1", "status": "affected"}, {"version": "16.2.2", "status": "affected"}, {"version": "16.3.1", "status": "affected"}, {"version": "16.3.2", "status": "affected"}, {"version": "16.3.3", "status": "affected"}, {"version": "16.3.1a", "status": "affected"}, {"version": "16.3.4", "status": "affected"}, {"version": "16.3.5", "status": "affected"}, {"version": "16.3.5b", "status": "affected"}, {"version": "16.3.6", "status": "affected"}, {"version": "16.3.7", "status": "affected"}, {"version": "16.3.8", "status": "affected"}, {"version": "16.3.9", "status": "affected"}, {"version": "16.3.10", "status": "affected"}, {"version": "16.3.11", "status": "affected"}, {"version": "16.4.1", "status": "affected"}, {"version": "16.4.2", "status": "affected"}, {"version": "16.4.3", "status": "affected"}, {"version": "16.5.1", "status": "affected"}, {"version": "16.5.1a", "status": "affected"}, {"version": "16.5.1b", "status": "affected"}, {"version": "16.5.2", "status": "affected"}, {"version": "16.5.3", "status": "affected"}, {"version": "3.18.0aS", "status": "affected"}, {"version": "3.18.0S", "status": "affected"}, {"version": "3.18.1S", "status": "affected"}, {"version": "3.18.2S", "status": "affected"}, {"version": "3.18.3S", "status": "affected"}, {"version": "3.18.4S", "status": "affected"}, {"version": "3.18.0SP", "status": "affected"}, {"version": "3.18.1SP", "status": "affected"}, {"version": "3.18.1aSP", "status": "affected"}, {"version": "3.18.1bSP", "status": "affected"}, {"version": "3.18.1cSP", "status": "affected"}, {"version": "3.18.2SP", "status": "affected"}, {"version": "3.18.2aSP", "status": "affected"}, {"version": "3.18.3SP", "status": "affected"}, {"version": "3.18.4SP", "status": "affected"}, {"version": "3.18.3aSP", "status": "affected"}, {"version": "3.18.3bSP", "status": "affected"}, {"version": "3.18.5SP", "status": "affected"}, {"version": "3.18.6SP", "status": "affected"}, {"version": "3.18.7SP", "status": "affected"}, {"version": "3.18.8aSP", "status": "affected"}, {"version": "3.18.9SP", "status": "affected"}, {"version": "16.6.1", "status": "affected"}, {"version": "16.6.2", "status": "affected"}, {"version": "16.6.3", "status": "affected"}, {"version": "16.6.4", "status": "affected"}, {"version": "16.6.5", "status": "affected"}, {"version": "16.6.4a", "status": "affected"}, {"version": "16.6.5a", "status": "affected"}, {"version": "16.6.6", "status": "affected"}, {"version": "16.6.7", "status": "affected"}, {"version": "16.6.8", "status": "affected"}, {"version": "16.6.9", "status": "affected"}, {"version": "16.6.10", "status": "affected"}, {"version": "16.7.1", "status": "affected"}, {"version": "16.7.1a", "status": "affected"}, {"version": "16.7.1b", "status": "affected"}, {"version": "16.7.2", "status": "affected"}, {"version": "16.7.3", "status": "affected"}, {"version": "16.7.4", "status": "affected"}, {"version": "16.8.1", "status": "affected"}, {"version": "16.8.1a", "status": "affected"}, {"version": "16.8.1b", "status": "affected"}, {"version": "16.8.1s", "status": "affected"}, {"version": "16.8.1c", "status": "affected"}, {"version": "16.8.1d", "status": "affected"}, {"version": "16.8.2", "status": "affected"}, {"version": "16.8.1e", "status": "affected"}, {"version": "16.8.3", "status": "affected"}, {"version": "16.9.1", "status": "affected"}, {"version": "16.9.2", "status": "affected"}, {"version": "16.9.1a", "status": "affected"}, {"version": "16.9.1b", "status": "affected"}, {"version": "16.9.1s", "status": "affected"}, {"version": "16.9.3", "status": "affected"}, {"version": "16.9.4", "status": "affected"}, {"version": "16.9.3a", "status": "affected"}, {"version": "16.9.5", "status": "affected"}, {"version": "16.9.5f", "status": "affected"}, {"version": "16.9.6", "status": "affected"}, {"version": "16.9.7", "status": "affected"}, {"version": "16.9.8", "status": "affected"}, {"version": "16.10.1", "status": "affected"}, {"version": "16.10.1a", "status": "affected"}, {"version": "16.10.1b", "status": "affected"}, {"version": "16.10.1s", "status": "affected"}, {"version": "16.10.1c", "status": "affected"}, {"version": "16.10.1e", "status": "affected"}, {"version": "16.10.1d", "status": "affected"}, {"version": "16.10.2", "status": "affected"}, {"version": "16.10.1f", "status": "affected"}, {"version": "16.10.1g", "status": "affected"}, {"version": "16.10.3", "status": "affected"}, {"version": "16.11.1", "status": "affected"}, {"version": "16.11.1a", "status": "affected"}, {"version": "16.11.1b", "status": "affected"}, {"version": "16.11.2", "status": "affected"}, {"version": "16.11.1s", "status": "affected"}, {"version": "16.12.1", "status": "affected"}, {"version": "16.12.1s", "status": "affected"}, {"version": "16.12.1a", "status": "affected"}, {"version": "16.12.1c", "status": "affected"}, {"version": "16.12.1w", "status": "affected"}, {"version": "16.12.2", "status": "affected"}, {"version": "16.12.1y", "status": "affected"}, {"version": "16.12.2a", "status": "affected"}, {"version": "16.12.3", "status": "affected"}, {"version": "16.12.8", "status": "affected"}, {"version": "16.12.2s", "status": "affected"}, {"version": "16.12.1x", "status": "affected"}, {"version": "16.12.1t", "status": "affected"}, {"version": "16.12.4", "status": "affected"}, {"version": "16.12.3s", "status": "affected"}, {"version": "16.12.3a", "status": "affected"}, {"version": "16.12.4a", "status": "affected"}, {"version": "16.12.5", "status": "affected"}, {"version": "16.12.6", "status": "affected"}, {"version": "16.12.1z1", "status": "affected"}, {"version": "16.12.5a", "status": "affected"}, {"version": "16.12.5b", "status": "affected"}, {"version": "16.12.1z2", "status": "affected"}, {"version": "16.12.6a", "status": "affected"}, {"version": "16.12.7", "status": "affected"}, {"version": "16.12.9", "status": "affected"}, {"version": "16.12.10", "status": "affected"}, {"version": "16.12.10a", "status": "affected"}, {"version": "17.1.1", "status": "affected"}, {"version": "17.1.1a", "status": "affected"}, {"version": "17.1.1s", "status": "affected"}, {"version": "17.1.1t", "status": "affected"}, {"version": "17.1.3", "status": "affected"}, {"version": "17.2.1", "status": "affected"}, {"version": "17.2.1r", "status": "affected"}, {"version": "17.2.1a", "status": "affected"}, {"version": "17.2.1v", "status": "affected"}, {"version": "17.2.2", "status": "affected"}, {"version": "17.2.3", "status": "affected"}, {"version": "17.3.1", "status": "affected"}, {"version": "17.3.2", "status": "affected"}, {"version": "17.3.3", "status": "affected"}, {"version": "17.3.1a", "status": "affected"}, {"version": "17.3.1w", "status": "affected"}, {"version": "17.3.2a", "status": "affected"}, {"version": "17.3.1x", "status": "affected"}, {"version": "17.3.1z", "status": "affected"}, {"version": "17.3.4", "status": "affected"}, {"version": "17.3.5", "status": "affected"}, {"version": "17.3.4a", "status": "affected"}, {"version": "17.3.6", "status": "affected"}, {"version": "17.3.4b", "status": "affected"}, {"version": "17.3.4c", "status": "affected"}, {"version": "17.3.5a", "status": "affected"}, {"version": "17.3.5b", "status": "affected"}, {"version": "17.3.7", "status": "affected"}, {"version": "17.3.8", "status": "affected"}, {"version": "17.3.8a", "status": "affected"}, {"version": "17.4.1", "status": "affected"}, {"version": "17.4.2", "status": "affected"}, {"version": "17.4.1a", "status": "affected"}, {"version": "17.4.1b", "status": "affected"}, {"version": "17.4.2a", "status": "affected"}, {"version": "17.5.1", "status": "affected"}, {"version": "17.5.1a", "status": "affected"}, {"version": "17.6.1", "status": "affected"}, {"version": "17.6.2", "status": "affected"}, {"version": "17.6.1w", "status": "affected"}, {"version": "17.6.1a", "status": "affected"}, {"version": "17.6.1x", "status": "affected"}, {"version": "17.6.3", "status": "affected"}, {"version": "17.6.1y", "status": "affected"}, {"version": "17.6.1z", "status": "affected"}, {"version": "17.6.3a", "status": "affected"}, {"version": "17.6.4", "status": "affected"}, {"version": "17.6.1z1", "status": "affected"}, {"version": "17.6.5", "status": "affected"}, {"version": "17.6.6", "status": "affected"}, {"version": "17.6.6a", "status": "affected"}, {"version": "17.6.5a", "status": "affected"}, {"version": "17.7.1", "status": "affected"}, {"version": "17.7.1a", "status": "affected"}, {"version": "17.7.1b", "status": "affected"}, {"version": "17.7.2", "status": "affected"}, {"version": "17.10.1", "status": "affected"}, {"version": "17.10.1a", "status": "affected"}, {"version": "17.10.1b", "status": "affected"}, {"version": "17.8.1", "status": "affected"}, {"version": "17.8.1a", "status": "affected"}, {"version": "17.9.1", "status": "affected"}, {"version": "17.9.1w", "status": "affected"}, {"version": "17.9.2", "status": "affected"}, {"version": "17.9.1a", "status": "affected"}, {"version": "17.9.1x", "status": "affected"}, {"version": "17.9.1y", "status": "affected"}, {"version": "17.9.3", "status": "affected"}, {"version": "17.9.2a", "status": "affected"}, {"version": "17.9.1x1", "status": "affected"}, {"version": "17.9.3a", "status": "affected"}, {"version": "17.9.4", "status": "affected"}, {"version": "17.9.1y1", "status": "affected"}, {"version": "17.9.4a", "status": "affected"}, {"version": "17.11.1", "status": "affected"}, {"version": "17.11.1a", "status": "affected"}, {"version": "17.12.1", "status": "affected"}, {"version": "17.12.1w", "status": "affected"}, {"version": "17.12.1a", "status": "affected"}, {"version": "17.12.2", "status": "affected"}, {"version": "17.12.2a", "status": "affected"}, {"version": "17.11.99SW", "status": "affected"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "Signal Handler with Functionality that is not Asynchronous-Safe", "type": "cwe", "cweId": "CWE-828"}]}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f", "name": "cisco-sa-aux-333WBz8f"}], "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H", "baseScore": 5.6, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "source": {"advisory": "cisco-sa-aux-333WBz8f", "discovery": "EXTERNAL", "defects": ["CSCwh47363"]}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:59:41.337Z"}, "title": "CVE Program Container", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f", "name": "cisco-sa-aux-333WBz8f", "tags": ["x_transferred"]}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-09T18:34:11.134133Z", "id": "CVE-2024-20309", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-09T18:34:29.824Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f", "name": "cisco-sa-aux-333WBz8f", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T21:59:41.337Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-20309", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-08-09T18:34:11.134133Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-09T18:34:26.379Z"}}], "cna": {"source": {"defects": ["CSCwh47363"], "advisory": "cisco-sa-aux-333WBz8f", "discovery": "EXTERNAL"}, "metrics": [{"format": "cvssV3_1", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.6, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "Cisco", "product": "Cisco IOS XE Software", "versions": [{"status": "affected", "version": "3.7.0S"}, {"status": "affected", "version": "3.7.1S"}, {"status": "affected", "version": "3.7.2S"}, {"status": "affected", "version": "3.7.3S"}, {"status": "affected", "version": "3.7.4S"}, {"status": "affected", "version": "3.7.5S"}, {"status": "affected", "version": "3.7.6S"}, {"status": "affected", "version": "3.7.7S"}, {"status": "affected", "version": "3.7.4aS"}, {"status": "affected", "version": "3.7.2tS"}, {"status": "affected", "version": "3.7.0bS"}, {"status": "affected", "version": "3.7.1aS"}, {"status": "affected", "version": "3.8.0S"}, {"status": "affected", "version": "3.8.1S"}, {"status": "affected", "version": "3.8.2S"}, {"status": "affected", "version": "3.9.1S"}, {"status": "affected", "version": "3.9.0S"}, {"status": "affected", "version": "3.9.2S"}, {"status": "affected", "version": "3.9.1aS"}, {"status": "affected", "version": "3.9.0aS"}, {"status": "affected", "version": "3.2.0SE"}, {"status": "affected", "version": "3.2.1SE"}, {"status": "affected", "version": "3.2.2SE"}, {"status": "affected", "version": "3.2.3SE"}, {"status": "affected", "version": "3.3.0SE"}, {"status": "affected", "version": "3.3.1SE"}, {"status": "affected", "version": "3.3.2SE"}, {"status": "affected", "version": "3.3.3SE"}, {"status": "affected", "version": "3.3.4SE"}, {"status": "affected", "version": "3.3.5SE"}, {"status": "affected", "version": "3.10.0S"}, {"status": "affected", "version": "3.10.1S"}, {"status": "affected", "version": "3.10.2S"}, {"status": "affected", "version": "3.10.3S"}, {"status": "affected", "version": "3.10.4S"}, {"status": "affected", "version": "3.10.5S"}, {"status": "affected", "version": "3.10.6S"}, {"status": "affected", "version": "3.10.2tS"}, {"status": "affected", "version": "3.10.7S"}, {"status": "affected", "version": "3.10.1xbS"}, {"status": "affected", "version": "3.10.8S"}, {"status": "affected", "version": "3.10.8aS"}, {"status": "affected", "version": "3.10.9S"}, {"status": "affected", "version": "3.10.10S"}, {"status": "affected", "version": "3.11.1S"}, {"status": "affected", "version": "3.11.2S"}, {"status": "affected", "version": "3.11.0S"}, {"status": "affected", "version": "3.11.3S"}, {"status": "affected", "version": "3.11.4S"}, {"status": "affected", "version": "3.12.0S"}, {"status": "affected", "version": "3.12.1S"}, {"status": "affected", "version": "3.12.2S"}, {"status": "affected", "version": "3.12.3S"}, {"status": "affected", "version": "3.12.0aS"}, {"status": "affected", "version": "3.12.4S"}, {"status": "affected", "version": "3.13.0S"}, {"status": "affected", "version": "3.13.1S"}, {"status": "affected", "version": "3.13.2S"}, {"status": "affected", "version": "3.13.3S"}, {"status": "affected", "version": "3.13.4S"}, {"status": "affected", "version": "3.13.5S"}, {"status": "affected", "version": "3.13.2aS"}, {"status": "affected", "version": "3.13.0aS"}, {"status": "affected", "version": "3.13.5aS"}, {"status": "affected", "version": "3.13.6S"}, {"status": "affected", "version": "3.13.7S"}, {"status": "affected", "version": "3.13.6aS"}, {"status": "affected", "version": "3.13.7aS"}, {"status": "affected", "version": "3.13.8S"}, {"status": "affected", "version": "3.13.9S"}, {"status": "affected", "version": "3.13.10S"}, {"status": "affected", "version": "3.6.2aE"}, {"status": "affected", "version": "3.6.2E"}, {"status": "affected", "version": "3.6.5bE"}, {"status": "affected", "version": "3.6.7bE"}, {"status": "affected", "version": "3.6.9E"}, {"status": "affected", "version": "3.6.10E"}, {"status": "affected", "version": "3.14.0S"}, {"status": "affected", "version": "3.14.1S"}, {"status": "affected", "version": "3.14.2S"}, {"status": "affected", "version": "3.14.3S"}, {"status": "affected", "version": "3.14.4S"}, {"status": "affected", "version": "3.15.0S"}, {"status": "affected", "version": "3.15.1S"}, {"status": "affected", "version": "3.15.2S"}, {"status": "affected", "version": "3.15.1cS"}, {"status": "affected", "version": "3.15.3S"}, {"status": "affected", "version": "3.15.4S"}, {"status": "affected", "version": "3.3.0SQ"}, {"status": "affected", "version": "3.3.1SQ"}, {"status": "affected", "version": "3.4.0SQ"}, {"status": "affected", "version": "3.4.1SQ"}, {"status": "affected", "version": "3.5.0SQ"}, {"status": "affected", "version": "3.5.1SQ"}, {"status": "affected", "version": "3.5.2SQ"}, {"status": "affected", "version": "3.5.3SQ"}, {"status": "affected", "version": "3.5.4SQ"}, {"status": "affected", "version": "3.5.5SQ"}, {"status": "affected", "version": "3.5.6SQ"}, {"status": "affected", "version": "3.5.7SQ"}, {"status": "affected", "version": "3.5.8SQ"}, {"status": "affected", "version": "3.16.0S"}, {"status": "affected", "version": "3.16.1S"}, {"status": "affected", "version": "3.16.1aS"}, {"status": "affected", "version": "3.16.2S"}, {"status": "affected", "version": "3.16.2aS"}, {"status": "affected", "version": "3.16.0cS"}, {"status": "affected", "version": "3.16.3S"}, {"status": "affected", "version": "3.16.2bS"}, {"status": "affected", "version": "3.16.3aS"}, {"status": "affected", "version": "3.16.4S"}, {"status": "affected", "version": "3.16.4aS"}, {"status": "affected", "version": "3.16.4bS"}, {"status": "affected", "version": "3.16.5S"}, {"status": "affected", "version": "3.16.4dS"}, {"status": "affected", "version": "3.16.6S"}, {"status": "affected", "version": "3.16.7S"}, {"status": "affected", "version": "3.16.6bS"}, {"status": "affected", "version": "3.16.7aS"}, {"status": "affected", "version": "3.16.7bS"}, {"status": "affected", "version": "3.16.8S"}, {"status": "affected", "version": "3.16.9S"}, {"status": "affected", "version": "3.16.10S"}, {"status": "affected", "version": "3.17.0S"}, {"status": "affected", "version": "3.17.1S"}, {"status": "affected", "version": "3.17.2S"}, {"status": "affected", "version": "3.17.1aS"}, {"status": "affected", "version": "3.17.3S"}, {"status": "affected", "version": "3.17.4S"}, {"status": "affected", "version": "16.1.1"}, {"status": "affected", "version": "16.1.2"}, {"status": "affected", "version": "16.1.3"}, {"status": "affected", "version": "16.2.1"}, {"status": "affected", "version": "16.2.2"}, {"status": "affected", "version": "16.3.1"}, {"status": "affected", "version": "16.3.2"}, {"status": "affected", "version": "16.3.3"}, {"status": "affected", "version": "16.3.1a"}, {"status": "affected", "version": "16.3.4"}, {"status": "affected", "version": "16.3.5"}, {"status": "affected", "version": "16.3.5b"}, {"status": "affected", "version": "16.3.6"}, {"status": "affected", "version": "16.3.7"}, {"status": "affected", "version": "16.3.8"}, {"status": "affected", "version": "16.3.9"}, {"status": "affected", "version": "16.3.10"}, {"status": "affected", "version": "16.3.11"}, {"status": "affected", "version": "16.4.1"}, {"status": "affected", "version": "16.4.2"}, {"status": "affected", "version": "16.4.3"}, {"status": "affected", "version": "16.5.1"}, {"status": "affected", "version": "16.5.1a"}, {"status": "affected", "version": "16.5.1b"}, {"status": "affected", "version": "16.5.2"}, {"status": "affected", "version": "16.5.3"}, {"status": "affected", "version": "3.18.0aS"}, {"status": "affected", "version": "3.18.0S"}, {"status": "affected", "version": "3.18.1S"}, {"status": "affected", "version": "3.18.2S"}, {"status": "affected", "version": "3.18.3S"}, {"status": "affected", "version": "3.18.4S"}, {"status": "affected", "version": "3.18.0SP"}, {"status": "affected", "version": "3.18.1SP"}, {"status": "affected", "version": "3.18.1aSP"}, {"status": "affected", "version": "3.18.1bSP"}, {"status": "affected", "version": "3.18.1cSP"}, {"status": "affected", "version": "3.18.2SP"}, {"status": "affected", "version": "3.18.2aSP"}, {"status": "affected", "version": "3.18.3SP"}, {"status": "affected", "version": "3.18.4SP"}, {"status": "affected", "version": "3.18.3aSP"}, {"status": "affected", "version": "3.18.3bSP"}, {"status": "affected", "version": "3.18.5SP"}, {"status": "affected", "version": "3.18.6SP"}, {"status": "affected", "version": "3.18.7SP"}, {"status": "affected", "version": "3.18.8aSP"}, {"status": "affected", "version": "3.18.9SP"}, {"status": "affected", "version": "16.6.1"}, {"status": "affected", "version": "16.6.2"}, {"status": "affected", "version": "16.6.3"}, {"status": "affected", "version": "16.6.4"}, {"status": "affected", "version": "16.6.5"}, {"status": "affected", "version": "16.6.4a"}, {"status": "affected", "version": "16.6.5a"}, {"status": "affected", "version": "16.6.6"}, {"status": "affected", "version": "16.6.7"}, {"status": "affected", "version": "16.6.8"}, {"status": "affected", "version": "16.6.9"}, {"status": "affected", "version": "16.6.10"}, {"status": "affected", "version": "16.7.1"}, {"status": "affected", "version": "16.7.1a"}, {"status": "affected", "version": "16.7.1b"}, {"status": "affected", "version": "16.7.2"}, {"status": "affected", "version": "16.7.3"}, {"status": "affected", "version": "16.7.4"}, {"status": "affected", "version": "16.8.1"}, {"status": "affected", "version": "16.8.1a"}, {"status": "affected", "version": "16.8.1b"}, {"status": "affected", "version": "16.8.1s"}, {"status": "affected", "version": "16.8.1c"}, {"status": "affected", "version": "16.8.1d"}, {"status": "affected", "version": "16.8.2"}, {"status": "affected", "version": "16.8.1e"}, {"status": "affected", "version": "16.8.3"}, {"status": "affected", "version": "16.9.1"}, {"status": "affected", "version": "16.9.2"}, {"status": "affected", "version": "16.9.1a"}, {"status": "affected", "version": "16.9.1b"}, {"status": "affected", "version": "16.9.1s"}, {"status": "affected", "version": "16.9.3"}, {"status": "affected", "version": "16.9.4"}, {"status": "affected", "version": "16.9.3a"}, {"status": "affected", "version": "16.9.5"}, {"status": "affected", "version": "16.9.5f"}, {"status": "affected", "version": "16.9.6"}, {"status": "affected", "version": "16.9.7"}, {"status": "affected", "version": "16.9.8"}, {"status": "affected", "version": "16.10.1"}, {"status": "affected", "version": "16.10.1a"}, {"status": "affected", "version": "16.10.1b"}, {"status": "affected", "version": "16.10.1s"}, {"status": "affected", "version": "16.10.1c"}, {"status": "affected", "version": "16.10.1e"}, {"status": "affected", "version": "16.10.1d"}, {"status": "affected", "version": "16.10.2"}, {"status": "affected", "version": "16.10.1f"}, {"status": "affected", "version": "16.10.1g"}, {"status": "affected", "version": "16.10.3"}, {"status": "affected", "version": "16.11.1"}, {"status": "affected", "version": "16.11.1a"}, {"status": "affected", "version": "16.11.1b"}, {"status": "affected", "version": "16.11.2"}, {"status": "affected", "version": "16.11.1s"}, {"status": "affected", "version": "16.12.1"}, {"status": "affected", "version": "16.12.1s"}, {"status": "affected", "version": "16.12.1a"}, {"status": "affected", "version": "16.12.1c"}, {"status": "affected", "version": "16.12.1w"}, {"status": "affected", "version": "16.12.2"}, {"status": "affected", "version": "16.12.1y"}, {"status": "affected", "version": "16.12.2a"}, {"status": "affected", "version": "16.12.3"}, {"status": "affected", "version": "16.12.8"}, {"status": "affected", "version": "16.12.2s"}, {"status": "affected", "version": "16.12.1x"}, {"status": "affected", "version": "16.12.1t"}, {"status": "affected", "version": "16.12.4"}, {"status": "affected", "version": "16.12.3s"}, {"status": "affected", "version": "16.12.3a"}, {"status": "affected", "version": "16.12.4a"}, {"status": "affected", "version": "16.12.5"}, {"status": "affected", "version": "16.12.6"}, {"status": "affected", "version": "16.12.1z1"}, {"status": "affected", "version": "16.12.5a"}, {"status": "affected", "version": "16.12.5b"}, {"status": "affected", "version": "16.12.1z2"}, {"status": "affected", "version": "16.12.6a"}, {"status": "affected", "version": "16.12.7"}, {"status": "affected", "version": "16.12.9"}, {"status": "affected", "version": "16.12.10"}, {"status": "affected", "version": "16.12.10a"}, {"status": "affected", "version": "17.1.1"}, {"status": "affected", "version": "17.1.1a"}, {"status": "affected", "version": "17.1.1s"}, {"status": "affected", "version": "17.1.1t"}, {"status": "affected", "version": "17.1.3"}, {"status": "affected", "version": "17.2.1"}, {"status": "affected", "version": "17.2.1r"}, {"status": "affected", "version": "17.2.1a"}, {"status": "affected", "version": "17.2.1v"}, {"status": "affected", "version": "17.2.2"}, {"status": "affected", "version": "17.2.3"}, {"status": "affected", "version": "17.3.1"}, {"status": "affected", "version": "17.3.2"}, {"status": "affected", "version": "17.3.3"}, {"status": "affected", "version": "17.3.1a"}, {"status": "affected", "version": "17.3.1w"}, {"status": "affected", "version": "17.3.2a"}, {"status": "affected", "version": "17.3.1x"}, {"status": "affected", "version": "17.3.1z"}, {"status": "affected", "version": "17.3.4"}, {"status": "affected", "version": "17.3.5"}, {"status": "affected", "version": "17.3.4a"}, {"status": "affected", "version": "17.3.6"}, {"status": "affected", "version": "17.3.4b"}, {"status": "affected", "version": "17.3.4c"}, {"status": "affected", "version": "17.3.5a"}, {"status": "affected", "version": "17.3.5b"}, {"status": "affected", "version": "17.3.7"}, {"status": "affected", "version": "17.3.8"}, {"status": "affected", "version": "17.3.8a"}, {"status": "affected", "version": "17.4.1"}, {"status": "affected", "version": "17.4.2"}, {"status": "affected", "version": "17.4.1a"}, {"status": "affected", "version": "17.4.1b"}, {"status": "affected", "version": "17.4.2a"}, {"status": "affected", "version": "17.5.1"}, {"status": "affected", "version": "17.5.1a"}, {"status": "affected", "version": "17.6.1"}, {"status": "affected", "version": "17.6.2"}, {"status": "affected", "version": "17.6.1w"}, {"status": "affected", "version": "17.6.1a"}, {"status": "affected", "version": "17.6.1x"}, {"status": "affected", "version": "17.6.3"}, {"status": "affected", "version": "17.6.1y"}, {"status": "affected", "version": "17.6.1z"}, {"status": "affected", "version": "17.6.3a"}, {"status": "affected", "version": "17.6.4"}, {"status": "affected", "version": "17.6.1z1"}, {"status": "affected", "version": "17.6.5"}, {"status": "affected", "version": "17.6.6"}, {"status": "affected", "version": "17.6.6a"}, {"status": "affected", "version": "17.6.5a"}, {"status": "affected", "version": "17.7.1"}, {"status": "affected", "version": "17.7.1a"}, {"status": "affected", "version": "17.7.1b"}, {"status": "affected", "version": "17.7.2"}, {"status": "affected", "version": "17.10.1"}, {"status": "affected", "version": "17.10.1a"}, {"status": "affected", "version": "17.10.1b"}, {"status": "affected", "version": "17.8.1"}, {"status": "affected", "version": "17.8.1a"}, {"status": "affected", "version": "17.9.1"}, {"status": "affected", "version": "17.9.1w"}, {"status": "affected", "version": "17.9.2"}, {"status": "affected", "version": "17.9.1a"}, {"status": "affected", "version": "17.9.1x"}, {"status": "affected", "version": "17.9.1y"}, {"status": "affected", "version": "17.9.3"}, {"status": "affected", "version": "17.9.2a"}, {"status": "affected", "version": "17.9.1x1"}, {"status": "affected", "version": "17.9.3a"}, {"status": "affected", "version": "17.9.4"}, {"status": "affected", "version": "17.9.1y1"}, {"status": "affected", "version": "17.9.4a"}, {"status": "affected", "version": "17.11.1"}, {"status": "affected", "version": "17.11.1a"}, {"status": "affected", "version": "17.12.1"}, {"status": "affected", "version": "17.12.1w"}, {"status": "affected", "version": "17.12.1a"}, {"status": "affected", "version": "17.12.2"}, {"status": "affected", "version": "17.12.2a"}, {"status": "affected", "version": "17.11.99SW"}]}], "exploits": [{"lang": "en", "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory."}], "references": [{"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f", "name": "cisco-sa-aux-333WBz8f"}], "descriptions": [{"lang": "en", "value": "A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding.\r\n\r This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "cwe", "cweId": "CWE-828", "description": "Signal Handler with Functionality that is not Asynchronous-Safe"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2024-03-27T17:02:19.749Z"}}}, "cveMetadata": {"cveId": "CVE-2024-20309", "state": "PUBLISHED", "dateUpdated": "2024-08-09T18:34:29.824Z", "dateReserved": "2023-11-08T15:08:07.631Z", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2024-03-27T17:02:19.749Z", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding.\r\n\r This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition."}, {"lang": "es", "value": "Una vulnerabilidad en las funciones del puerto as\u00edncrono auxiliar (AUX) del software Cisco IOS XE podr\u00eda permitir que un atacante local autenticado provoque que un dispositivo afectado se recargue o deje de responder. Esta vulnerabilidad se debe al manejo incorrecto del tr\u00e1fico de entrada espec\u00edfico cuando el hardware de control de flujo est\u00e1 habilitado en el puerto AUX. Un atacante podr\u00eda aprovechar esta vulnerabilidad realizando telnet inverso al puerto AUX y enviando datos espec\u00edficos despu\u00e9s de conectarse. Un exploit exitoso podr\u00eda permitir que el atacante haga que el dispositivo se reinicie o deje de responder, lo que resultar\u00eda en una condici\u00f3n de denegaci\u00f3n de servicio (DoS)."}], "id": "CVE-2024-20309", "lastModified": "2024-11-21T08:52:19.290", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 5.6, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 1.1, "impactScore": 4.0, "source": "ykramarz@cisco.com", "type": "Secondary"}]}, "published": "2024-03-27T17:15:52.260", "references": [{"source": "ykramarz@cisco.com", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aux-333WBz8f"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-828"}], "source": "ykramarz@cisco.com", "type": "Secondary"}]}

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object