Denial of Service for Catalyst 6500 and 6800 Switch with Supervisor Engine 2T or 6T
Date of Notice: 04/9/2024
Action Level - Critical
Description
MCNC would like to make you aware of a new Denial of Service affecting the Catalyst 6500 and 6800 series switches with Supervisor Engine 2T or 6T when any of the following are enabled: port security; device classifier; or authentication, authorization, and accounting (AAA).
All previous versions of code are vulnerable to a crafted packet which can permit an attacker to force a reboot of the device, resulting in a Denial of Service.
Affected Devices
- Catalyst 6500 Series Switches with Supervisor Engine 2T or 6T
- Catalyst 6800 Series Switches with Supervisor Engine 2T or 6T
Attack Vector
Any attacker with network access that can send a packet to the given device could potentially exploit this vulnerability.
Attack Feasibility
Unknown
Mitigations
There is no mitigation, you must apply Cisco’s free patch
Remediation
Upgrade to Cisco’s newest released code.
Reference Links