Cisco IOS IKEv1 Fragmentation Heap Overflow DoS
CVE-2024-20307 Published on March 27, 2024
A vulnerability in the IKEv1 fragmentation code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a heap overflow, resulting in an affected device reloading. This vulnerability exists because crafted, fragmented IKEv1 packets are not properly reassembled. An attacker could exploit this vulnerability by sending crafted UDP packets to an affected system. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Note: Only traffic that is directed to the affected system can be used to exploit this vulnerability. This vulnerability can be triggered by IPv4 and IPv6 traffic.
Vulnerability Analysis
CVE-2024-20307 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.
Attack Vector:
NETWORK
Attack Complexity:
HIGH
Privileges Required:
NONE
User Interaction:
NONE
Scope:
CHANGED
Confidentiality Impact:
NONE
Integrity Impact:
NONE
Availability Impact:
HIGH
Weakness Type
What is a Stack Overflow Vulnerability?
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).
CVE-2024-20307 has been classified to as a Stack Overflow vulnerability or weakness.
Products Associated with CVE-2024-20307
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2024-20307 are published in these products:
Affected Versions
Cisco IOS:- Version 15.1(2)SG8 is affected.
- Version 15.2(4)M11 is affected.
- Version 15.1(2)SY8 is affected.
- Version 15.1(2)SY9 is affected.
- Version 15.1(2)SY10 is affected.
- Version 15.1(2)SY11 is affected.
- Version 15.1(2)SY12 is affected.
- Version 15.1(2)SY13 is affected.
- Version 15.1(2)SY14 is affected.
- Version 15.1(2)SY15 is affected.
- Version 15.1(2)SY16 is affected.
- Version 15.3(3)S8 is affected.
- Version 15.3(3)S9 is affected.
- Version 15.3(3)S10 is affected.
- Version 15.3(3)S8a is affected.
- Version 15.2(4)E2 is affected.
- Version 15.2(3)E4 is affected.
- Version 15.2(5)E is affected.
- Version 15.2(4)E3 is affected.
- Version 15.2(5b)E is affected.
- Version 15.2(3)E5 is affected.
- Version 15.2(4)E4 is affected.
- Version 15.2(4)E5 is affected.
- Version 15.2(4)E5a is affected.
- Version 15.2(4)E6 is affected.
- Version 15.2(4)E7 is affected.
- Version 15.2(4)E8 is affected.
- Version 15.2(4)E9 is affected.
- Version 15.2(4)E10 is affected.
- Version 15.2(4)E10a is affected.
- Version 15.2(4)E10d is affected.
- Version 15.4(3)S6 is affected.
- Version 15.4(3)S7 is affected.
- Version 15.4(3)S6a is affected.
- Version 15.4(3)S8 is affected.
- Version 15.4(3)S9 is affected.
- Version 15.4(3)S10 is affected.
- Version 15.3(3)M8 is affected.
- Version 15.3(3)M9 is affected.
- Version 15.3(3)M10 is affected.
- Version 15.3(3)M8a is affected.
- Version 15.2(1)SY3 is affected.
- Version 15.2(1)SY4 is affected.
- Version 15.2(1)SY5 is affected.
- Version 15.2(1)SY6 is affected.
- Version 15.2(1)SY7 is affected.
- Version 15.2(1)SY8 is affected.
- Version 15.5(3)S3 is affected.
- Version 15.5(1)S4 is affected.
- Version 15.5(2)S4 is affected.
- Version 15.5(3)S4 is affected.
- Version 15.5(3)S5 is affected.
- Version 15.5(3)S6 is affected.
- Version 15.5(3)S6a is affected.
- Version 15.5(3)S7 is affected.
- Version 15.5(3)S6b is affected.
- Version 15.5(3)S8 is affected.
- Version 15.5(3)S9 is affected.
- Version 15.5(3)S10 is affected.
- Version 15.5(3)S9a is affected.
- Version 15.5(2)T4 is affected.
- Version 15.2(5)EA is affected.
- Version 15.2(4)EA4 is affected.
- Version 15.2(4)EA5 is affected.
- Version 15.2(4)EA6 is affected.
- Version 15.2(4)EA7 is affected.
- Version 15.2(4)EA8 is affected.
- Version 15.2(4)EA9 is affected.
- Version 15.2(4)EA9a is affected.
- Version 15.5(3)M3 is affected.
- Version 15.5(3)M4 is affected.
- Version 15.5(3)M4a is affected.
- Version 15.5(3)M5 is affected.
- Version 15.5(3)M6 is affected.
- Version 15.5(3)M7 is affected.
- Version 15.5(3)M6a is affected.
- Version 15.5(3)M8 is affected.
- Version 15.5(3)M9 is affected.
- Version 15.5(3)M10 is affected.
- Version 15.3(1)SY1 is affected.
- Version 15.3(1)SY2 is affected.
- Version 15.2(4)EC1 is affected.
- Version 15.2(4)EC2 is affected.
- Version 15.4(1)SY is affected.
- Version 15.4(1)SY1 is affected.
- Version 15.4(1)SY2 is affected.
- Version 15.4(1)SY3 is affected.
- Version 15.4(1)SY4 is affected.
- Version 15.5(1)SY is affected.
- Version 15.5(1)SY1 is affected.
- Version 15.5(1)SY2 is affected.
- Version 15.5(1)SY3 is affected.
- Version 15.5(1)SY4 is affected.
- Version 15.5(1)SY5 is affected.
- Version 15.5(1)SY6 is affected.
- Version 15.5(1)SY7 is affected.
- Version 15.5(1)SY8 is affected.
- Version 15.5(1)SY9 is affected.
- Version 15.5(1)SY10 is affected.
- Version 15.5(1)SY11 is affected.
- Version 15.7(3)M is affected.
- Version 15.7(3)M1 is affected.
- Version 15.7(3)M0a is affected.
- Version 15.7(3)M3 is affected.
- Version 15.7(3)M2 is affected.
- Version 15.7(3)M4 is affected.
- Version 15.7(3)M5 is affected.
- Version 15.7(3)M4a is affected.
- Version 15.7(3)M4b is affected.
- Version 15.7(3)M6 is affected.
- Version 15.7(3)M7 is affected.
- Version 15.7(3)M8 is affected.
- Version 15.7(3)M9 is affected.
- Version 15.8(3)M is affected.
- Version 15.8(3)M1 is affected.
- Version 15.8(3)M0a is affected.
- Version 15.8(3)M0b is affected.
- Version 15.8(3)M2 is affected.
- Version 15.8(3)M1a is affected.
- Version 15.8(3)M3 is affected.
- Version 15.8(3)M2a is affected.
- Version 15.8(3)M4 is affected.
- Version 15.8(3)M3a is affected.
- Version 15.8(3)M3b is affected.
- Version 15.8(3)M5 is affected.
- Version 15.8(3)M6 is affected.
- Version 15.8(3)M7 is affected.
- Version 15.8(3)M8 is affected.
- Version 15.8(3)M9 is affected.
- Version 15.8(3)M10 is affected.
- Version 15.9(3)M is affected.
- Version 15.9(3)M1 is affected.
- Version 15.9(3)M0a is affected.
- Version 15.9(3)M2 is affected.
- Version 15.9(3)M3 is affected.
- Version 15.9(3)M2a is affected.
- Version 15.9(3)M3a is affected.
- Version 15.9(3)M4 is affected.
- Version 15.9(3)M3b is affected.
- Version 15.9(3)M5 is affected.
- Version 15.9(3)M4a is affected.
- Version 15.9(3)M6 is affected.
- Version 15.9(3)M7 is affected.
- Version 15.9(3)M6a is affected.
- Version 15.9(3)M6b is affected.
- Version 15.9(3)M7a is affected.
- Version 15.3(3)JPI11 is affected.
- Version 3.4.8SG is affected.
- Version 3.10.8S is affected.
- Version 3.10.8aS is affected.
- Version 3.10.9S is affected.
- Version 3.10.10S is affected.
- Version 3.13.6S is affected.
- Version 3.13.7S is affected.
- Version 3.13.6aS is affected.
- Version 3.13.7aS is affected.
- Version 3.13.8S is affected.
- Version 3.13.9S is affected.
- Version 3.13.10S is affected.
- Version 3.14.4S is affected.
- Version 3.15.4S is affected.
- Version 3.7.4E is affected.
- Version 3.7.5E is affected.
- Version 3.16.3S is affected.
- Version 3.16.3aS is affected.
- Version 3.16.4S is affected.
- Version 3.16.4aS is affected.
- Version 3.16.4bS is affected.
- Version 3.16.5S is affected.
- Version 3.16.4dS is affected.
- Version 3.16.6S is affected.
- Version 3.16.7S is affected.
- Version 3.16.6bS is affected.
- Version 3.16.7aS is affected.
- Version 3.16.7bS is affected.
- Version 3.16.8S is affected.
- Version 3.16.9S is affected.
- Version 3.16.10S is affected.
- Version 16.1.3 is affected.
- Version 16.2.1 is affected.
- Version 16.2.2 is affected.
- Version 3.8.2E is affected.
- Version 3.8.3E is affected.
- Version 3.8.4E is affected.
- Version 3.8.5E is affected.
- Version 3.8.5aE is affected.
- Version 3.8.6E is affected.
- Version 3.8.7E is affected.
- Version 3.8.8E is affected.
- Version 3.8.9E is affected.
- Version 3.8.10E is affected.
- Version 16.3.1 is affected.
- Version 16.3.2 is affected.
- Version 16.3.3 is affected.
- Version 16.3.1a is affected.
- Version 16.3.4 is affected.
- Version 16.3.5 is affected.
- Version 16.3.5b is affected.
- Version 16.3.6 is affected.
- Version 16.3.7 is affected.
- Version 16.3.8 is affected.
- Version 16.3.9 is affected.
- Version 16.3.10 is affected.
- Version 16.3.11 is affected.
- Version 16.4.1 is affected.
- Version 16.4.2 is affected.
- Version 16.4.3 is affected.
- Version 16.5.1 is affected.
- Version 16.5.1a is affected.
- Version 16.5.1b is affected.
- Version 16.5.2 is affected.
- Version 16.5.3 is affected.
- Version 3.9.0E is affected.
- Version 16.6.1 is affected.
- Version 16.6.2 is affected.
- Version 16.6.3 is affected.
- Version 16.6.4 is affected.
- Version 16.6.5 is affected.
- Version 16.6.4a is affected.
- Version 16.6.5a is affected.
- Version 16.6.6 is affected.
- Version 16.6.7 is affected.
- Version 16.6.8 is affected.
- Version 16.6.9 is affected.
- Version 16.6.10 is affected.
- Version 16.7.1 is affected.
- Version 16.7.1a is affected.
- Version 16.7.1b is affected.
- Version 16.7.2 is affected.
- Version 16.7.3 is affected.
- Version 16.7.4 is affected.
- Version 16.8.1 is affected.
- Version 16.8.1a is affected.
- Version 16.8.1b is affected.
- Version 16.8.1s is affected.
- Version 16.8.1c is affected.
- Version 16.8.1d is affected.
- Version 16.8.2 is affected.
- Version 16.8.1e is affected.
- Version 16.8.3 is affected.
- Version 16.9.1 is affected.
- Version 16.9.2 is affected.
- Version 16.9.1a is affected.
- Version 16.9.1b is affected.
- Version 16.9.1s is affected.
- Version 16.9.3 is affected.
- Version 16.9.4 is affected.
- Version 16.9.3a is affected.
- Version 16.9.5 is affected.
- Version 16.9.5f is affected.
- Version 16.9.6 is affected.
- Version 16.9.7 is affected.
- Version 16.9.8 is affected.
- Version 16.10.1 is affected.
- Version 16.10.1a is affected.
- Version 16.10.1b is affected.
- Version 16.10.1s is affected.
- Version 16.10.1c is affected.
- Version 16.10.1e is affected.
- Version 16.10.1d is affected.
- Version 16.10.2 is affected.
- Version 16.10.1f is affected.
- Version 16.10.1g is affected.
- Version 16.10.3 is affected.
- Version 16.11.1 is affected.
- Version 16.11.1a is affected.
- Version 16.11.1b is affected.
- Version 16.11.2 is affected.
- Version 16.11.1s is affected.
- Version 16.12.1 is affected.
- Version 16.12.1s is affected.
- Version 16.12.1a is affected.
- Version 16.12.1c is affected.
- Version 16.12.1w is affected.
- Version 16.12.2 is affected.
- Version 16.12.1y is affected.
- Version 16.12.2a is affected.
- Version 16.12.3 is affected.
- Version 16.12.8 is affected.
- Version 16.12.2s is affected.
- Version 16.12.1x is affected.
- Version 16.12.1t is affected.
- Version 16.12.4 is affected.
- Version 16.12.3s is affected.
- Version 16.12.3a is affected.
- Version 16.12.4a is affected.
- Version 16.12.5 is affected.
- Version 16.12.6 is affected.
- Version 16.12.1z1 is affected.
- Version 16.12.5a is affected.
- Version 16.12.5b is affected.
- Version 16.12.1z2 is affected.
- Version 16.12.6a is affected.
- Version 16.12.7 is affected.
- Version 16.12.9 is affected.
- Version 17.1.1 is affected.
- Version 17.1.1a is affected.
- Version 17.1.1s is affected.
- Version 17.1.1t is affected.
- Version 17.1.3 is affected.
- Version 17.2.1 is affected.
- Version 17.2.1r is affected.
- Version 17.2.1a is affected.
- Version 17.2.1v is affected.
- Version 17.2.2 is affected.
- Version 17.2.3 is affected.
- Version 17.3.1 is affected.
- Version 17.3.2 is affected.
- Version 17.3.3 is affected.
- Version 17.3.1a is affected.
- Version 17.3.1w is affected.
- Version 17.3.2a is affected.
- Version 17.3.1x is affected.
- Version 17.3.1z is affected.
- Version 17.3.4 is affected.
- Version 17.3.5 is affected.
- Version 17.3.4a is affected.
- Version 17.3.6 is affected.
- Version 17.3.4b is affected.
- Version 17.3.4c is affected.
- Version 17.3.5a is affected.
- Version 17.3.5b is affected.
- Version 17.3.7 is affected.
- Version 17.4.1 is affected.
- Version 17.4.2 is affected.
- Version 17.4.1a is affected.
- Version 17.4.1b is affected.
- Version 17.4.2a is affected.
- Version 17.5.1 is affected.
- Version 17.5.1a is affected.
- Version 17.6.1 is affected.
- Version 17.6.2 is affected.
- Version 17.6.1w is affected.
- Version 17.6.1a is affected.
- Version 17.6.1x is affected.
- Version 17.6.3 is affected.
- Version 17.6.1y is affected.
- Version 17.6.1z is affected.
- Version 17.6.3a is affected.
- Version 17.6.4 is affected.
- Version 17.6.1z1 is affected.
- Version 17.6.5 is affected.
- Version 17.6.5a is affected.
- Version 17.7.1 is affected.
- Version 17.7.1a is affected.
- Version 17.7.1b is affected.
- Version 17.7.2 is affected.
- Version 17.10.1 is affected.
- Version 17.10.1a is affected.
- Version 17.10.1b is affected.
- Version 17.8.1 is affected.
- Version 17.8.1a is affected.
- Version 17.9.1 is affected.
- Version 17.9.1w is affected.
- Version 17.9.2 is affected.
- Version 17.9.1a is affected.
- Version 17.9.1x is affected.
- Version 17.9.1y is affected.
- Version 17.9.3 is affected.
- Version 17.9.2a is affected.
- Version 17.9.1x1 is affected.
- Version 17.9.3a is affected.
- Version 17.11.1 is affected.
- Version 17.11.1a is affected.
- Version 17.11.99SW is affected.
Exploit Probability
EPSS
1.50%
Percentile
80.84%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.