CVE-2024-20314

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A vulnerability in the IPv4 Software-Defined Access (SD-Access) fabric edge node feature could allow an unauthenticated, remote attacker to cause high CPU utilization and stop all traffic processing, resulting in a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of certain IPv4 packets. An attacker could exploit this vulnerability by sending certain IPv4 packets to an affected device. A successful exploit could allow the attacker to cause the device to exhaust CPU resources and stop processing traffic, resulting in a DoS condition.

Recommendations Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. At the moment, there is no information about specific affected versions that contains a fix for this vulnerability.