CVE-2022-20694

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description The issue is related to the incorrect handling of a specific RPKI to Router (RTR) Protocol packet header in the implementation of the Resource Public Key Infrastructure (RPKI) feature. This could allow an unauthenticated, remote attacker to cause the Border Gateway Protocol (BGP) process to crash, resulting in a denial of service (DoS) condition. An attacker could exploit this by compromising the RPKI validator server and sending a specifically crafted RTR packet to an affected device, or by using man-in-the-middle techniques to impersonate the RPKI validator server and send a crafted RTR response packet over the established RTR TCP connection.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.