CISCO-SA-IOS-XR-VERII-BYPASS-HHPWQRVX

Vulnerable Products:

This vulnerability affects the following Cisco products if they are running a vulnerable release of Cisco IOS XR Software, regardless of device configuration:

8000 Series Routers Network Convergence System (NCS) 540 Series Routers that are running NCS540L images NCS 1010 NCS 1014 NCS 5700 Series Fixed-Port Routers that are running NCS5700 images

For information about which Cisco software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.Products Confirmed Not Vulnerable:

Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities.

Cisco has confirmed that this vulnerability does not affect the following Cisco products if they are running Cisco IOS XR Software:

ASR 9000 Series Routers IOS XRd vRouter IOS XRv 9000 Routers NCS 540 Series Routers NCS540-ACC-SYS and NCS 540-24Z8Q2C-SYS NCS 5500 Series Routers NCS 5700 Series Fixed-Port Routers NCS-57C3-MOD-S and NCS-57C3-MOD-SE-S

Cisco has also confirmed that these vulnerabilities do not affect the following Cisco products:

IOS Software IOS XE Software NX-OS SoftwareWorkarounds:

There are no workarounds that address this vulnerability.Fixed Software:

Cisco has released free software updates ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#ssu"] that address the vulnerability described in this advisory. Customers with service contracts that entitle them to regular software updates should obtain security fixes through their usual update channels.

Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license: https://www.cisco.com/c/en/us/products/end-user-license-agreement.html...