March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Alert – Magecart Group – Active IOCs
September 15, 2021Rewterz Threat Advisory – CVE-2021-30862 – Apple iTunes U Vulnerability
September 16, 2021Rewterz Threat Alert – Magecart Group – Active IOCs
September 15, 2021Rewterz Threat Advisory – CVE-2021-30862 – Apple iTunes U Vulnerability
September 16, 2021
Severity
High
Analysis Summary
CVE-2021-34720
A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause device packet memory to become exhausted or cause the IP SLA process to crash, resulting in a denial of service (DoS) condition. An attacker could exploit this vulnerability by sending specific IP SLA or TWAMP packets to an affected device. A successful exploit could allow the attacker to exhaust the packet memory, which will impact other processes, such as routing protocols or crash the IP SLA process.
Impact
- Denial of Service
- Unauthorized Access
Affected Vendors
Cisco
Affected Products
- Cisco IOS XR Software
Remediation
Refer to Cisco Security Advisory for the patch, upgrade, or suggested workaround information.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipsla-ZA3SRrpP