Unrated severityNVD Advisory· Published Mar 27, 2024· Updated Aug 9, 2024
CVE-2024-20309
CVE-2024-20309
Description
A vulnerability in auxiliary asynchronous port (AUX) functions of Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload or stop responding. This vulnerability is due to the incorrect handling of specific ingress traffic when flow control hardware is enabled on the AUX port. An attacker could exploit this vulnerability by reverse telnetting to the AUX port and sending specific data after connecting. A successful exploit could allow the attacker to cause the device to reset or stop responding, resulting in a denial of service (DoS) condition.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 3.7.0S
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.