CVE-2021-1268

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software (affected versions not specified)

Description: The issue is related to errors in handling IPv6 traffic in the Cisco IOS XR operating system. An unauthenticated, adjacent attacker could exploit this to cause an IPv6 flood on the management interface network of an affected device. The vulnerability exists because the software incorrectly forwards IPv6 packets with an IPv6 node-local multicast group address destination received on the management interfaces. An attacker could exploit this by connecting to the same network as the management interfaces and injecting IPv6 packets with an IPv6 node-local multicast group address destination. A successful exploit could allow the attacker to cause an IPv6 flood on the corresponding network, potentially resulting in network degradation or a denial of service (DoS) condition due to excessive network traffic.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability. However, Cisco has released software updates that address this vulnerability, and there are workarounds available. As a temporary workaround, consider restricting access to the management interfaces to minimize the risk of exploitation. Avoid injecting IPv6 packets with an IPv6 node-local multicast group address destination on the affected network until the issue is resolved.