Vulnerability Description
A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. The vulnerability is due to a logic error when processing specific link-local IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet that would flow inbound through the wired interface of an affected device. A successful exploit could allow the attacker to cause traffic drops in the affected VLAN, thus triggering the DoS condition.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios Xe | - |
| Cisco | Catalyst 9800 | - |
| Cisco | Catalyst 9800-40 | - |
| Cisco | Catalyst 9800-80 | - |
| Cisco | Catalyst 9800-Cl | - |
| Cisco | Catalyst 9800-L | - |
| Cisco | Catalyst 9800-L-C | - |
| Cisco | Catalyst 9800-L-F | - |
| Cisco | Catalyst 9800 Embedded Wireless Controller | - |
Related Weaknesses (CWE)
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-eVendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-eVendor Advisory
FAQ
What is CVE-2021-34767?
CVE-2021-34767 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a...
How severe is CVE-2021-34767?
CVE-2021-34767 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-34767?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xe, Cisco Catalyst 9800, Cisco Catalyst 9800-40, Cisco Catalyst 9800-80, Cisco Catalyst 9800-Cl.