Cisco IOS XR Border Gateway Protocol (BGP) Denial-of-Service Vulnerability

Technical Severity

HIGH

7.5 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitation Likelihood

5.30 %

Predictive Probability

Percentile Rank

90.1 th

Documented as more likely to be exploited than 90.1% of known CVEs.

Detection Date

Mar 25, 2022

Remediation Due

Apr 15, 2022

CISA Catalog Active

Threat Analysis

Cisco IOS XR, when BGP is the configured routing feature, allows remote attackers to cause a denial-of-service (DoS).

Apply updates per vendor instructions.

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2010-3035