Cisco Event Response Page
Cisco Event Response: September 2022 Semiannual Cisco IOS XR Software Security Advisory Bundled Publication
-
Cisco released its semiannual Cisco IOS XR Software Security Advisory Bundled Publication on September 14, 2022. In direct response to customer feedback, Cisco releases bundles of Cisco IOS XR Software Security Advisories on the second Wednesday of the month in March and September of each calendar year.
The September 14, 2022, release of the Cisco IOS XR Software Security Advisory Bundled Publication includes three Cisco Security Advisories that describe three vulnerabilities in Cisco IOS XR Software. Cisco has released software updates that address these vulnerabilities.
-
The following table identifies Cisco Security content that is associated with this bundled publication:
Cisco Security Advisory CVE ID Security Impact Rating CVSS Base Score Cisco IOS XR Software Broadband Network Gateway PPP over Ethernet Denial of Service Vulnerability CVE-2022-20849Medium6.1Cisco Network Convergence System 4000 Series TL1 Denial of Service Vulnerability CVE-2022-20845Medium6Cisco IOS XR Software Cisco Discovery Protocol Denial of Service Vulnerability CVE-2022-20846Medium4.3Related Resources
Cisco Security Vulnerability Policy
MITRE Common Vulnerabilities and Exposures
Common Vulnerability Scoring System and the Security Impact Rating
Common Vulnerability Scoring System Q & A