CVE-2024-20304

HIGH

Cisco IOS XR - Unauthenticated Denial of Service via Mtrace2 UDP Packet Memory Exhaustion

Title source: llm

Description

A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to exhaust the UDP packet memory of an affected device. This vulnerability exists because the Mtrace2 code does not properly handle packet memory. An attacker could exploit this vulnerability by sending crafted packets to an affected device. A successful exploit could allow the attacker to exhaust the incoming UDP packet memory. The affected device would not be able to process higher-level UDP-based protocols packets, possibly causing a denial of service (DoS) condition. Note: This vulnerability can be exploited using IPv4 or IPv6.

References (1)

Core 1

Core References

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-pak-mem-exhst-3ke9FeFy

Scores

CVSS v3 8.6

EPSS 0.0056

EPSS Percentile 68.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-401

Status published

Products (18)

cisco/ios_xr 7.7.1

cisco/ios_xr 7.7.2

cisco/ios_xr 7.7.21

cisco/ios_xr 7.8.1

cisco/ios_xr 7.8.2

cisco/ios_xr 7.8.12

cisco/ios_xr 7.8.22

cisco/ios_xr 7.9.1

cisco/ios_xr 7.9.2

cisco/ios_xr 7.9.21

... and 8 more

Published Sep 11, 2024

Tracked Since Feb 18, 2026