CVE-2019-1909

MEDIUM

Cisco IOS XR 4.3.1-6.6.2 - Unauthenticated Denial of Service via BGP Update Message Processing

Title source: llm
STIX 2.1

Description

A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to incorrect processing of certain BGP update messages. An attacker could exploit this vulnerability by sending BGP update messages that include a specific set of attributes to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic from explicitly defined peers only. To exploit this vulnerability, the malicious BGP update message would need to come from a configured, valid BGP peer or would need to be injected by the attacker into the victim's BGP network on an existing, valid TCP connection to a BGP peer.

References (1)

Core 1
Core References

Scores

CVSS v3 6.8
EPSS 0.0149
EPSS Percentile 71.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-20
Status published
Products (1)
cisco/ios_xr 4.3.1 - 6.6.2
Published Jul 06, 2019
Tracked Since Feb 18, 2026