=====================================================================

                                CERT-Renater

                     Note d'Information No. 2022/VULN326

_____________________________________________________________________

DATE                : 15/09/2022

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Cisco IOS XR Software versions prior to 6.5.32,
                                   7.5.2, 7.6.2, 7.7.1.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-bng-Gmg5Gxt
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs4k-tl1-GNnLwC6
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr-cdp-wnALzvT2
_____________________________________________________________________

Below is the list of Cisco Security Advisories published by Cisco
PSIRT on 2022-September-14.


The following PSIRT security advisories (3 Medium) were published
at 16:00 UTC today.

Table of Contents:

1) Cisco IOS XR Software Broadband Network Gateway PPP over
     Ethernet Denial of Service Vulnerability - SIR: Medium

2) Cisco Network Convergence System 4000 Series TL1 Denial of
     Service Vulnerability - SIR: Medium

3) Cisco IOS XR Software Cisco Discovery Protocol Denial of
     Service Vulnerability - SIR: Medium

+--------------------------------------------------------------------

1) Cisco IOS XR Software Broadband Network Gateway PPP over
     Ethernet Denial of Service Vulnerability

CVE-2022-20849

SIR: Medium

CVSS Score v(3.1): 6.1

URL: 
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-bng-Gmg5Gxt 
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxr-bng-Gmg5Gxt"]

+--------------------------------------------------------------------

2) Cisco Network Convergence System 4000 Series TL1 Denial
     of Service Vulnerability

CVE-2022-20845

SIR: Medium

CVSS Score v(3.1): 6.0

URL: 
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs4k-tl1-GNnLwC6 
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs4k-tl1-GNnLwC6"]

+--------------------------------------------------------------------

3) Cisco IOS XR Software Cisco Discovery Protocol Denial of
     Service Vulnerability

CVE-2022-20846

SIR: Medium

CVSS Score v(3.1): 4.3

URL: 
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr-cdp-wnALzvT2 
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-xr-cdp-wnALzvT2"]



=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================