CVE-2019-1910

Name of the Vulnerable Software and Affected Versions Cisco IOS XR Software versions prior to Release 6.6.3

Description A vulnerability in the implementation of the Intermediate System-to-Intermediate System (IS-IS) routing protocol functionality could allow an unauthenticated attacker who is in the same IS-IS area to cause a denial of service (DoS) condition. The vulnerability is due to incorrect processing of crafted IS-IS link-state protocol data units (PDUs). An attacker could exploit this vulnerability by sending a crafted link-state PDU to an affected system to be processed. A successful exploit could allow the attacker to cause all routers within the IS-IS area to unexpectedly restart the IS-IS process, resulting in a DoS condition.

Recommendations For Cisco IOS XR Software versions prior to Release 6.6.3, update to Release 6.6.3 or later to address this vulnerability. As a temporary workaround, consider restricting access to the IS-IS routing protocol to minimize the risk of exploitation.