发布日期：2022-04-13
更新日期：2022-06-08

受影响系统：

Cisco Cisco 1000 Series Integrated Services Routers
Cisco Cisco 4221 Integrated Services Routers
Cisco Cisco 4321 Integrated Services Routers
Cisco Cisco 4331 Integrated Services Routers
Cisco Cisco 4351 Integrated Services Routers
Cisco Cisco Catalyst 8200 Series Edge Platform
Cisco Cisco Catalyst 8300 Series Edge Platform

描述：

---

CVE(CAN) ID: CVE-2022-20679

Cisco IOS XE Software是美国思科（Cisco）公司的一个操作系统。用于企业有线和无线访问，汇聚，核心和WAN的单一操作系统，Cisco IOS XE降低了业务和网络的复杂性。
Cisco IOS XE Software的IPSec解密例程存在拒绝服务漏洞，该漏洞源于程序在处理已配置IPsec隧道上的流量时发生缓冲区耗尽。攻击者可利用该漏洞造成受影响的设备重新加载，从而导致拒绝服务。

<*链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-qfp-ipsec-GQmqvtqV
*>

建议：

---

厂商补丁：

Cisco
-----
Cisco已经为此发布了一个安全公告（cisco-sa-qfp-ipsec-GQmqvtqV）以及相应补丁:
cisco-sa-qfp-ipsec-GQmqvtqV：Cisco IOS XE Software IPSec Denial of Service Vulnerability
链接：https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-qfp-ipsec-GQmqvtqV

浏览次数：702
严重程度：0（网友投票）