Guest

Preview Tool

Cisco Bug: CSCvt93184 - Cisco IOS XR Software SNMP Management Plan Protection ACL Bypass Vulnerability

Last Modified

Feb 10, 2021

Products (37)

  • Cisco ASR 9000 Series Aggregation Services Routers
  • Cisco ASR 9910 Router
  • Cisco Network Convergence System 55A2-MOD-HD-S
  • Cisco CRS-1 Line Card Chassis (Dual)
  • Cisco Network Convergence System 5504
  • Cisco CRS-X 8-Slot Single-Shelf System
  • Cisco CRS-X Multishelf System
  • Cisco CRS-1 Line Card Chassis (Multi)
  • Cisco Network Convergence System 5508
  • Cisco CRS-1 16-Slot Line Card Chassis
View all products in Bug Search Tool Login Required

Known Affected Releases

6.4.2.BASE

Description (partial)

Symptom:
A vulnerability in the Local Packet Transport Services (LPTS) programming of the SNMP with the management plane protection feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to allow connections despite the management plane protection that is configured to deny access to the SNMP server of an affected device.

The vulnerability is due to incorrect LPTS programming when using SNMP with management plane protection. An attacker could exploit this vulnerability by connecting to an affected device using SNMP. A successful exploit could allow the attacker to connect to the device on the configured SNMP ports. Valid credentials are required to execute any of the SNMP requests.

Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snmp-7MKrW7Nq

Conditions:
At the time of publication, this vulnerability affected Cisco IOS XR Software releases later than Release 6.1.1 and earlier than releases 6.6.4, 6.7.2, 7.0.2, 7.0.12, 7.1.1, and 7.2.1.

At the time of publication, Cisco IOS XR Software releases 6.6.4, 6.7.2, 7.0.2, 7.0.12, 7.1.1, and 7.2.1 and later contained the fix for this vulnerability
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.