CVE-2019-1846

Name of the Vulnerable Software and Affected Versions Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers (affected versions not specified)

Description A vulnerability in the Multiprotocol Label Switching (MPLS) Operations, Administration, and Maintenance (OAM) implementation could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to the incorrect handling of certain MPLS OAM packets. An attacker could exploit this vulnerability by sending malicious MPLS OAM packets to an affected device. A successful exploit could allow the attacker to cause the lspv server process to crash, leading to system instability and the inability to process or forward traffic, resulting in a DoS condition that requires manual intervention to restore normal operating conditions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.