04.09.2024

Denial of Service for Catalyst 6500 and 6800 Switch with Supervisor Engine 2T or 6T

Alert
  • facebook share link
  • twitter share link
  • linkedin share link
  • mail share link

Date of Notice: 04/9/2024

Action Level - Critical

Description

MCNC would like to make you aware of a new Denial of Service affecting the Catalyst 6500 and 6800 series switches with Supervisor Engine 2T or 6T when any of the following are enabled: port security; device classifier; or authentication, authorization, and accounting (AAA).

All previous versions of code are vulnerable to a crafted packet which can permit an attacker to force a reboot of the device, resulting in a Denial of Service.

Affected Devices

  • Catalyst 6500 Series Switches with Supervisor Engine 2T or 6T
  • Catalyst 6800 Series Switches with Supervisor Engine 2T or 6T

Attack Vector

Any attacker with network access that can send a packet to the given device could potentially exploit this vulnerability.

Attack Feasibility

Unknown

Mitigations

There is no mitigation, you must apply Cisco’s free patch

Remediation

Upgrade to Cisco’s newest released code.

Reference Links

MCNC
PO Box 12889
3021 East Cornwallis Road
RTP, NC 27709-2889
919-248-1900 Phone | 919-248-1101 Fax
Connect With Us
  • linkedin
  • instagram
  • x
  • facebook
  • youtube
© 2024 MCNC