Description
A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to improper initialization of a buffer. An attacker could exploit this vulnerability via any of the following methods: An authenticated, remote attacker could access the LLDP neighbor table via either the CLI or SNMP while the device is in a specific state. An unauthenticated, adjacent attacker could corrupt the LLDP neighbor table by injecting specific LLDP frames into the network and then waiting for an administrator of the device or a network management system (NMS) managing the device to retrieve the LLDP neighbor table of the device via either the CLI or SNMP. An authenticated, adjacent attacker with SNMP read-only credentials or low privileges on the device CLI could corrupt the LLDP neighbor table by injecting specific LLDP frames into the network and then accessing the LLDP neighbor table via either the CLI or SNMP. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a reload of the device.
Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Cisco | Cisco IOS | affected |
|
Configuration 1 [-]
| AND |
|
No data.
No data available yet.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2021-21353 | A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS Software and Cisco IOS XE Software could allow an attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to improper initialization of a buffer. An attacker could exploit this vulnerability via any of the following methods: An authenticated, remote attacker could access the LLDP neighbor table via either the CLI or SNMP while the device is in a specific state. An unauthenticated, adjacent attacker could corrupt the LLDP neighbor table by injecting specific LLDP frames into the network and then waiting for an administrator of the device or a network management system (NMS) managing the device to retrieve the LLDP neighbor table of the device via either the CLI or SNMP. An authenticated, adjacent attacker with SNMP read-only credentials or low privileges on the device CLI could corrupt the LLDP neighbor table by injecting specific LLDP frames into the network and then accessing the LLDP neighbor table via either the CLI or SNMP. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a reload of the device. |
References
History
Thu, 07 Nov 2024 22:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Subscriptions
Cisco
Subscribe
1000 Integrated Services Router
Subscribe
1100-4g\/6g Integrated Services Router
Subscribe
1100-4p Integrated Services Router
Subscribe
1100-8p Integrated Services Router
Subscribe
1100 Integrated Services Router
Subscribe
1101-4p Integrated Services Router
Subscribe
1101 Integrated Services Router
Subscribe
1109-2p Integrated Services Router
Subscribe
1109-4p Integrated Services Router
Subscribe
1109 Integrated Services Router
Subscribe
1111x-8p Integrated Services Router
Subscribe
1111x Integrated Services Router
Subscribe
111x Integrated Services Router
Subscribe
1120 Integrated Services Router
Subscribe
1160 Integrated Services Router
Subscribe
4000 Integrated Services Router
Subscribe
4221 Integrated Services Router
Subscribe
4321 Integrated Services Router
Subscribe
4331 Integrated Services Router
Subscribe
4351 Integrated Services Router
Subscribe
4431 Integrated Services Router
Subscribe
4451-x Integrated Services Router
Subscribe
4451 Integrated Services Router
Subscribe
4461 Integrated Services Router
Subscribe
Catalyst 3650-12x48fd-e
Subscribe
Catalyst 3650-12x48fd-l
Subscribe
Catalyst 3650-12x48fd-s
Subscribe
Catalyst 3650-12x48uq
Subscribe
Catalyst 3650-12x48uq-e
Subscribe
Catalyst 3650-12x48uq-l
Subscribe
Catalyst 3650-12x48uq-s
Subscribe
Catalyst 3650-12x48ur
Subscribe
Catalyst 3650-12x48ur-e
Subscribe
Catalyst 3650-12x48ur-l
Subscribe
Catalyst 3650-12x48ur-s
Subscribe
Catalyst 3650-12x48uz
Subscribe
Catalyst 3650-12x48uz-e
Subscribe
Catalyst 3650-12x48uz-l
Subscribe
Catalyst 3650-12x48uz-s
Subscribe
Catalyst 3650-24pd
Subscribe
Catalyst 3650-24pd-e
Subscribe
Catalyst 3650-24pd-l
Subscribe
Catalyst 3650-24pd-s
Subscribe
Catalyst 3650-24pdm
Subscribe
Catalyst 3650-24pdm-e
Subscribe
Catalyst 3650-24pdm-l
Subscribe
Catalyst 3650-24pdm-s
Subscribe
Catalyst 3650-24ps-e
Subscribe
Catalyst 3650-24ps-l
Subscribe
Catalyst 3650-24ps-s
Subscribe
Catalyst 3650-24td-e
Subscribe
Catalyst 3650-24td-l
Subscribe
Catalyst 3650-24td-s
Subscribe
Catalyst 3650-24ts-e
Subscribe
Catalyst 3650-24ts-l
Subscribe
Catalyst 3650-24ts-s
Subscribe
Catalyst 3650-48fd-e
Subscribe
Catalyst 3650-48fd-l
Subscribe
Catalyst 3650-48fd-s
Subscribe
Catalyst 3650-48fq
Subscribe
Catalyst 3650-48fq-e
Subscribe
Catalyst 3650-48fq-l
Subscribe
Catalyst 3650-48fq-s
Subscribe
Catalyst 3650-48fqm
Subscribe
Catalyst 3650-48fqm-e
Subscribe
Catalyst 3650-48fqm-l
Subscribe
Catalyst 3650-48fqm-s
Subscribe
Catalyst 3650-48fs-e
Subscribe
Catalyst 3650-48fs-l
Subscribe
Catalyst 3650-48fs-s
Subscribe
Catalyst 3650-48pd-e
Subscribe
Catalyst 3650-48pd-l
Subscribe
Catalyst 3650-48pd-s
Subscribe
Catalyst 3650-48pq-e
Subscribe
Catalyst 3650-48pq-l
Subscribe
Catalyst 3650-48pq-s
Subscribe
Catalyst 3650-48ps-e
Subscribe
Catalyst 3650-48ps-l
Subscribe
Catalyst 3650-48ps-s
Subscribe
Catalyst 3650-48td-e
Subscribe
Catalyst 3650-48td-l
Subscribe
Catalyst 3650-48td-s
Subscribe
Catalyst 3650-48tq-e
Subscribe
Catalyst 3650-48tq-l
Subscribe
Catalyst 3650-48tq-s
Subscribe
Catalyst 3650-48ts-e
Subscribe
Catalyst 3650-48ts-l
Subscribe
Catalyst 3650-48ts-s
Subscribe
Catalyst 3650-8x24pd-e
Subscribe
Catalyst 3650-8x24pd-l
Subscribe
Catalyst 3650-8x24pd-s
Subscribe
Catalyst 3650-8x24uq
Subscribe
Catalyst 3650-8x24uq-e
Subscribe
Catalyst 3650-8x24uq-l
Subscribe
Catalyst 3650-8x24uq-s
Subscribe
Catalyst 3850
Subscribe
Catalyst 3850-12s-e
Subscribe
Catalyst 3850-12s-s
Subscribe
Catalyst 3850-12x48u
Subscribe
Catalyst 3850-12xs-e
Subscribe
Catalyst 3850-12xs-s
Subscribe
Catalyst 3850-16xs-e
Subscribe
Catalyst 3850-16xs-s
Subscribe
Catalyst 3850-24p-e
Subscribe
Catalyst 3850-24p-l
Subscribe
Catalyst 3850-24p-s
Subscribe
Catalyst 3850-24pw-s
Subscribe
Catalyst 3850-24s-e
Subscribe
Catalyst 3850-24s-s
Subscribe
Catalyst 3850-24t-e
Subscribe
Catalyst 3850-24t-l
Subscribe
Catalyst 3850-24t-s
Subscribe
Catalyst 3850-24u
Subscribe
Catalyst 3850-24u-e
Subscribe
Catalyst 3850-24u-l
Subscribe
Catalyst 3850-24u-s
Subscribe
Catalyst 3850-24xs
Subscribe
Catalyst 3850-24xs-e
Subscribe
Catalyst 3850-24xs-s
Subscribe
Catalyst 3850-24xu
Subscribe
Catalyst 3850-24xu-e
Subscribe
Catalyst 3850-24xu-l
Subscribe
Catalyst 3850-24xu-s
Subscribe
Catalyst 3850-32xs-e
Subscribe
Catalyst 3850-32xs-s
Subscribe
Catalyst 3850-48f-e
Subscribe
Catalyst 3850-48f-l
Subscribe
Catalyst 3850-48f-s
Subscribe
Catalyst 3850-48p-e
Subscribe
Catalyst 3850-48p-l
Subscribe
Catalyst 3850-48p-s
Subscribe
Catalyst 3850-48pw-s
Subscribe
Catalyst 3850-48t-e
Subscribe
Catalyst 3850-48t-l
Subscribe
Catalyst 3850-48t-s
Subscribe
Catalyst 3850-48u
Subscribe
Catalyst 3850-48u-e
Subscribe
Catalyst 3850-48u-l
Subscribe
Catalyst 3850-48u-s
Subscribe
Catalyst 3850-48xs
Subscribe
Catalyst 3850-48xs-e
Subscribe
Catalyst 3850-48xs-f-e
Subscribe
Catalyst 3850-48xs-f-s
Subscribe
Catalyst 3850-48xs-s
Subscribe
Catalyst 3850-nm-2-40g
Subscribe
Catalyst 3850-nm-8-10g
Subscribe
Catalyst 9200
Subscribe
Catalyst 9300
Subscribe
Catalyst 9300-24p-a
Subscribe
Catalyst 9300-24p-e
Subscribe
Catalyst 9300-24s-a
Subscribe
Catalyst 9300-24s-e
Subscribe
Catalyst 9300-24t-a
Subscribe
Catalyst 9300-24t-e
Subscribe
Catalyst 9300-24u-a
Subscribe
Catalyst 9300-24u-e
Subscribe
Catalyst 9300-24ux-a
Subscribe
Catalyst 9300-24ux-e
Subscribe
Catalyst 9300-48p-a
Subscribe
Catalyst 9300-48p-e
Subscribe
Catalyst 9300-48s-a
Subscribe
Catalyst 9300-48s-e
Subscribe
Catalyst 9300-48t-a
Subscribe
Catalyst 9300-48t-e
Subscribe
Catalyst 9300-48u-a
Subscribe
Catalyst 9300-48u-e
Subscribe
Catalyst 9300-48un-a
Subscribe
Catalyst 9300-48un-e
Subscribe
Catalyst 9300-48uxm-a
Subscribe
Catalyst 9300-48uxm-e
Subscribe
Catalyst 9300l
Subscribe
Catalyst 9300l-24p-4g-a
Subscribe
Catalyst 9300l-24p-4g-e
Subscribe
Catalyst 9300l-24p-4x-a
Subscribe
Catalyst 9300l-24p-4x-e
Subscribe
Catalyst 9300l-24t-4g-a
Subscribe
Catalyst 9300l-24t-4g-e
Subscribe
Catalyst 9300l-24t-4x-a
Subscribe
Catalyst 9300l-24t-4x-e
Subscribe
Catalyst 9300l-48p-4g-a
Subscribe
Catalyst 9300l-48p-4g-e
Subscribe
Catalyst 9300l-48p-4x-a
Subscribe
Catalyst 9300l-48p-4x-e
Subscribe
Catalyst 9300l-48t-4g-a
Subscribe
Catalyst 9300l-48t-4g-e
Subscribe
Catalyst 9300l-48t-4x-a
Subscribe
Catalyst 9300l-48t-4x-e
Subscribe
Catalyst 9300l Stack
Subscribe
Catalyst 9400
Subscribe
Catalyst 9407r
Subscribe
Catalyst 9410r
Subscribe
Catalyst 9500
Subscribe
Catalyst 9600
Subscribe
Catalyst 9800
Subscribe
Catalyst 9800-40
Subscribe
Catalyst 9800-80
Subscribe
Catalyst 9800-cl
Subscribe
Catalyst 9800-l
Subscribe
Catalyst 9800-l-c
Subscribe
Catalyst 9800-l-f
Subscribe
Csr 1000v
Subscribe
Ios
Subscribe
Ios Xe
Subscribe
MITRE
Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2024-11-07T21:59:20.710Z
Reserved: 2021-06-15T00:00:00.000Z
Link: CVE-2021-34703
Vulnrichment
Updated: 2024-08-04T00:19:48.150Z
NVD
Status : Modified
Published: 2021-09-23T03:15:16.970
Modified: 2024-11-21T06:10:59.470
Link: CVE-2021-34703
Redhat
No data.
OpenCVE Enrichment
No data.