发布日期：2020-07-16
更新日期：2020-08-24

受影响系统：

Cisco SD-Wan vEdge 5000 Series Routers < 18.3.0
Cisco SD-Wan vEdge 5000 Series Routers < 17.2.7
Cisco SD-WAN vEdge Cloud Routers < 18.3.0
Cisco SD-WAN vEdge Cloud Routers < 17.2.7
Cisco SD-WAN vBond Orchestrator < 18.3.0
Cisco SD-WAN vBond Orchestrator < 17.2.7
Cisco SD-WAN vEdge 100 Series Routers < 18.3.0
Cisco SD-WAN vEdge 100 Series Routers < 17.2.7
Cisco SD-WAN vEdge 1000 Series Routers < 18.3.0
Cisco SD-WAN vEdge 1000 Series Routers < 17.2.7
Cisco SD-WAN vEdge 2000 Series Routers < 18.3.0
Cisco SD-WAN vEdge 2000 Series Routers < 17.2.7
Cisco SD-WAN vManage < 18.3.0
Cisco SD-WAN vManage < 17.2.7
Cisco SD-WAN vSmart Controller < 18.3.0
Cisco SD-WAN vSmart Controller < 17.2.7

描述：

---

CVE(CAN) ID: CVE-2020-3351

Cisco SD-WAN Solution是美国思科（Cisco）公司的一套网络扩展解决方案。
Cisco SD-WAN Solution 17.2.7之前版本和18.3.0之前版本的Cisco SD-WAN vBond Orchestrator、SD-WAN vEdge 100 Series Routers、SD-WAN vEdge 1000 Series Routers、SD-WAN vEdge 2000 Series Routers、SD-WAN vEdge 5000 Series Routers、SD-WAN vEdge Cloud Router、SD-WAN vManage和SD-WAN vSmart Controller存在拒绝服务漏洞。该漏洞源于程序没有正确验证封装在UDP数据包中的Cisco SD-WAN对等消息中的字段。未经身份认证的远程攻击者可通过向目标系统发送特制UDP消息利用该漏洞导致拒绝服务。

<*来源：Cisco
  
  链接：*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-sdw-dos-KWOdyHnB）以及相应补丁:
cisco-sa-sdw-dos-KWOdyHnB：Cisco SD-WAN Solution Software Denial of Service Vulnerability
链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sdw-dos-KWOdyHnB

浏览次数：974
严重程度：0（网友投票）