CVE-2024-20308

Name of the Vulnerable Software and Affected Versions: Cisco IOS and Cisco IOS XE Software (affected versions not specified)

Description: A vulnerability in the IKEv1 fragmentation code could allow an unauthenticated, remote attacker to cause a heap underflow or corruption, resulting in an affected device reloading. This issue exists because crafted, fragmented IKEv1 packets are not properly reassembled. An attacker could exploit this vulnerability by sending crafted UDP packets to an affected system, potentially causing a denial of service (DoS) condition. The vulnerability can be triggered by both IPv4 and IPv6 traffic.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.