CVE-2021-34697

A vulnerability in the Protection Against Distributed Denial of Service Attacks feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct denial of service (DoS) attacks to or through the affected device. This vulnerability is due to incorrect programming of the half-opened connections limit, TCP SYN flood limit, or TCP SYN cookie features when the features are configured in vulnerable releases of Cisco IOS XE Software. An attacker could exploit this vulnerability by attempting to flood traffic to or through the affected device. A successful exploit could allow the attacker to initiate a DoS attack to or through an affected device.

Severity	MEDIUM
CVSS	5.8
CWE	CWE-665
KEV
Published	4 years ago
Modified	1 year ago

Related Products

Product	Advisory	Evidence
Cisco IOS	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln
Cisco IOS XE Software	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln
Cisco IOS XE Catalyst SD-WAN	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln
Cisco Catalyst 9600 Series Switches	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln · software-dependent
Cisco Catalyst 9500 Series Switches	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln · software-dependent
Cisco Catalyst 9400 Series Switches	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln · software-dependent
Cisco Catalyst 9200 Series Switches	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln · software-dependent
Cisco Catalyst 9300 Series Switches	cisco-sa-zbfw-tguGuYq	Cisco OpenVuln · software-dependent