CVE-2021-34714 — HIGH (7.4)

Q: How severe is CVE-2021-34714?

CVE-2021-34714 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2021-34714?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Fxos, Cisco Firepower 4100, Cisco Firepower 4110, Cisco Firepower 4112, Cisco Firepower 4115.

Vulnerability Description

A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause an affected device to reload. This vulnerability is due to improper input validation of the UDLD packets. An attacker could exploit this vulnerability by sending specifically crafted UDLD packets to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. Note: The UDLD feature is disabled by default, and the conditions to exploit this vulnerability are strict. An attacker must have full control of a directly connected device. On Cisco IOS XR devices, the impact is limited to the reload of the UDLD process.

CVSS Score

7.4

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Cisco	Fxos	>= 2.2, < 2.2.2.148
Cisco	Firepower 4100	-
Cisco	Firepower 4110	-
Cisco	Firepower 4112	-
Cisco	Firepower 4115	-
Cisco	Firepower 4120	-
Cisco	Firepower 4125	-
Cisco	Firepower 4140	-
Cisco	Firepower 4145	-
Cisco	Firepower 4150	-
Cisco	Firepower 9300	-
Cisco	Firepower 9300 Sm-24	-
Cisco	Firepower 9300 Sm-36	-
Cisco	Firepower 9300 Sm-40	-
Cisco	Firepower 9300 Sm-44	-
Cisco	Firepower 9300 Sm-44 X 3	-
Cisco	Firepower 9300 Sm-48	-
Cisco	Firepower 9300 Sm-56	-
Cisco	Firepower 9300 Sm-56 X 3	-
Cisco	Firepower 9300 With 1 Sm-24 Module	-

Related Weaknesses (CWE)

CWE-20

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iVendor Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iVendor Advisory

FAQ

What is CVE-2021-34714?

CVE-2021-34714 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Software, Cisco IOS XR Software, and Cisco NX-OS Software could allow an un...

How severe is CVE-2021-34714?

CVE-2021-34714 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-34714?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Fxos, Cisco Firepower 4100, Cisco Firepower 4110, Cisco Firepower 4112, Cisco Firepower 4115.