CVE-2024-20327

CVE Database · CVE-2024-20327

CVE-2024-20327

· HIGHAnalyzed

CVSS v3.1

7.4

EPSS

0.34%

Published

Mar 13, 2024

Modified

May 6, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the PPP over Ethernet (PPPoE) termination feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, adjacent attacker to crash the ppp_ma process, resulting in a denial of service (DoS) condition. This vulnerability is due to the improper handling of malformed PPPoE packets that are received on a router that is running Broadband Network Gateway (BNG) functionality with PPPoE termination on a Lightspeed-based or Lightspeed-Plus-based line card. An attacker could exploit this vulnerability by sending a crafted PPPoE packet to an affected line card interface that does not terminate PPPoE. A successful exploit could allow the attacker to crash the ppp_ma process, resulting in a DoS condition for PPPoE traffic across the router.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-20

Affected Products (15)

cisco · ios_xr (up to 7.9.21)vulnerable

cisco · ios_xr (up to 7.10.1)vulnerable

cisco · ios_xr (up to 7.11.1)vulnerable

cisco · asr_9000v-v2

cisco · asr_9001

cisco · asr_9006

cisco · asr_9010

cisco · asr_9901

cisco · asr_9902

cisco · asr_9903

cisco · asr_9904

cisco · asr_9906

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-pppma-JKWFgneW

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-pppma-JKWFgneW

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs