BDU:2026-04161
Уязвимость функции отслеживания DHCP-сообщений операционной системы Cisco IOS XE коммутаторов серии Catalyst 9000, позволяющая нарушителю выполнить произвольный код
📄 Описание
Уязвимость функции отслеживания DHCP-сообщений операционной системы Cisco IOS XE коммутаторов серии Catalyst 9000 связана с неконтролируемым расходом ресурсов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, выполнить произвольный код путем отправки специально сформированных BOOTP-пакетов
🖥️ Уязвимое ПО
Cisco Systems Inc.
Наименование ПО: Cisco IOS XE
Версия ПО: 16.12.1 (Cisco IOS XE), 17.2.1 (Cisco IOS XE), 16.10.1 (Cisco IOS XE), 17.1.1 (Cisco IOS XE), 17.3.3 (Cisco IOS XE), 17.1.1s (Cisco IOS XE), 17.1.2 (Cisco IOS XE), 17.1.1t (Cisco IOS XE), 17.1.3 (Cisco IOS XE), 17.2.1a (Cisco IOS XE), 17.3.1 (Cisco IOS XE), 17.3.2 (Cisco IOS XE), 17.3.2a (Cisco IOS XE), 17.3.4 (Cisco IOS XE), 17.3.5 (Cisco IOS XE), 17.3.6 (Cisco IOS XE), 17.3.7 (Cisco IOS XE), 17.3.8 (Cisco IOS XE), 17.3.8a (Cisco IOS XE), 17.4.1 (Cisco IOS XE), 17.4.1c (Cisco IOS XE), 17.5.1 (Cisco IOS XE), 17.6.1 (Cisco IOS XE), 17.6.2 (Cisco IOS XE), 17.6.3 (Cisco IOS XE), 17.6.1y (Cisco IOS XE), 17.6.4 (Cisco IOS XE), 17.6.5 (Cisco IOS XE), 17.6.6 (Cisco IOS XE), 17.6.6a (Cisco IOS XE), 17.6.5a (Cisco IOS XE), 17.7.1 (Cisco IOS XE), 17.10.1 (Cisco IOS XE), 17.10.1b (Cisco IOS XE), 17.8.1 (Cisco IOS XE), 17.9.1 (Cisco IOS XE), 17.9.2 (Cisco IOS XE), 17.9.3 (Cisco IOS XE), 17.9.4 (Cisco IOS XE), 17.9.4a (Cisco IOS XE), 17.11.1 (Cisco IOS XE), 17.12.1 (Cisco IOS XE), 16.6.1 (Cisco IOS XE), 16.6.2 (Cisco IOS XE), 16.6.3 (Cisco IOS XE), 16.6.4 (Cisco IOS XE), 16.6.5 (Cisco IOS XE), 16.6.4s (Cisco IOS XE), 16.6.4a (Cisco IOS XE), 16.6.6 (Cisco IOS XE), 16.6.7 (Cisco IOS XE), 16.6.8 (Cisco IOS XE), 16.6.9 (Cisco IOS XE), 16.6.10 (Cisco IOS XE), 16.7.1 (Cisco IOS XE), 16.8.1 (Cisco IOS XE), 16.8.1a (Cisco IOS XE), 16.8.1s (Cisco IOS XE), 16.9.1 (Cisco IOS XE), 16.9.2 (Cisco IOS XE), 16.9.1s (Cisco IOS XE), 16.9.3 (Cisco IOS XE), 16.9.2s (Cisco IOS XE), 16.9.4 (Cisco IOS XE), 16.9.3s (Cisco IOS XE), 16.9.5 (Cisco IOS XE), 16.9.6 (Cisco IOS XE), 16.9.7 (Cisco IOS XE), 16.9.8 (Cisco IOS XE), 16.10.1s (Cisco IOS XE), 16.10.1e (Cisco IOS XE), 16.11.1 (Cisco IOS XE), 16.11.1b (Cisco IOS XE), 16.11.1s (Cisco IOS XE), 16.11.1c (Cisco IOS XE), 16.12.1s (Cisco IOS XE), 16.12.1c (Cisco IOS XE), 16.12.2 (Cisco IOS XE), 16.12.3 (Cisco IOS XE), 16.12.8 (Cisco IOS XE), 16.12.2s (Cisco IOS XE), 16.12.2t (Cisco IOS XE), 16.12.4 (Cisco IOS XE), 16.12.3s (Cisco IOS XE), 16.12.3a (Cisco IOS XE), 16.12.4a (Cisco IOS XE), 16.12.5 (Cisco IOS XE), 16.12.6 (Cisco IOS XE), 16.12.5b (Cisco IOS XE), 16.12.6a (Cisco IOS XE), 16.12.7 (Cisco IOS XE), 17.5.1b (Cisco IOS XE), 17.5.1c (Cisco IOS XE), 17.6.7 (Cisco IOS XE), 17.6.8 (Cisco IOS XE), 17.9.5 (Cisco IOS XE), 17.9.6 (Cisco IOS XE), 17.9.6a (Cisco IOS XE), 17.9.6b (Cisco IOS XE), 17.9.7 (Cisco IOS XE), 17.9.8 (Cisco IOS XE), 17.12.2 (Cisco IOS XE), 17.12.3 (Cisco IOS XE), 17.12.4 (Cisco IOS XE), 17.12.5 (Cisco IOS XE), 17.12.1z5 (Cisco IOS XE), 17.13.1 (Cisco IOS XE), 17.14.1 (Cisco IOS XE), 17.15.1 (Cisco IOS XE), 17.15.2 (Cisco IOS XE), 17.15.3 (Cisco IOS XE), 17.15.2b (Cisco IOS XE), 17.15.4 (Cisco IOS XE), 17.15.4b (Cisco IOS XE), 17.15.4s1 (Cisco IOS XE), 17.15.4d (Cisco IOS XE), 17.16.1 (Cisco IOS XE), 17.17.1 (Cisco IOS XE), 17.18.1 (Cisco IOS XE)
Тип ПО: Операционная система, ПО сетевого программно-аппаратного средства
ОС / платформа: Cisco Systems Inc. Cisco IOS XE 16.12.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.2.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.10.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.1.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.1.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.1.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.1.1t Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.1.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.2.1a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.2a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.3.8a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.4.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.4.1c Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.5.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.1y Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.6a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.5a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.7.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.10.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.10.1b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.8.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.4a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.11.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.4s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.4a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.9 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.6.10 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.7.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.8.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.8.1a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.8.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.2s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.3s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.9.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.10.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.10.1e Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.11.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.11.1b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.11.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.11.1c Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.1s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.1c Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.2s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.2t Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.3s Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.3a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.4a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.5b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.6a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 16.12.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.5.1b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.5.1c Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.6.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.6 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.6a Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.6b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.7 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.9.8 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.12.1z5 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.13.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.14.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.2 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.3 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.2b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.4 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.4b Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.4s1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.15.4d Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.16.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.17.1 Catalyst 9000 Series, Cisco Systems Inc. Cisco IOS XE 17.18.1 Catalyst 9000 Series
⚙️ Технические сведения
Тип ошибки
Неконтролируемый расход ресурса («Истощение ресурса») (CWE-400)
Класс уязвимости
Уязвимость кода
Дата выявления
25.03.2026
Способ эксплуатации
Исчерпание ресурсов
Способ устранения
Обновление программного обеспечения
Статус уязвимости
Подтверждена производителем
Наличие эксплойта
Данные уточняются
Устранение
Уязвимость устранена
📊 CVSS
CVSS 2.0
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS 3.0
AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
⚠️ Уровень опасности
Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 7,8)
Высокий уровень опасности (базовая оценка CVSS 3.1 составляет 8,6)
🔗 Источники и меры
🔗 https://sec.cloudapps.cisco.com/security/center/co...
🏷️ Идентификаторы
CVE-2026-20084
📅 Даты
Дата публикации
30.03.2026
Последнее обновление
30.03.2026
← Назад к списку