Cisco has identified a critical vulnerability affecting ASR 9000 Series Aggregation Services Routers running vulnerable versions of Cisco IOS XR Software. The vulnerability, assigned CVE-2024-20327, arises from the improper handling of malformed PPPoE packets, potentially allowing an unauthenticated attacker to crash the ppp_ma process and trigger a DoS condition.
The vulnerability specifically impacts routers configured with Broadband Network Gateway (BNG) functionality and PPPoE termination on Lightspeed-based or Lightspeed-Plus-based line cards. Attackers could exploit this flaw by sending crafted PPPoE packets to affected interfaces, leading to a disruption in PPPoE traffic across the router.
To address this vulnerability, Cisco has released software updates, and no workarounds are available. It’s crucial for affected users to apply these updates promptly to mitigate the risk of exploitation. Additionally, organizations are advised to follow recommended defensive measures, including minimizing network exposure and implementing secure remote access protocols
Reference:
