Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software. This vulnerability allows an unauthenticated, remote attacker to disrupt the SSH service, causing it to become unresponsive. The issue arises because the SSH service does not have adequate flood protection, enabling attackers to launch DoS attacks against the SSH port. While the SSH service becomes unresponsive during the attack, all other operations remain stable.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition on the SSH service, causing it to stop responding. However, this disruption does not affect other operations, which remain stable during the attack.

Remediation

Cisco has released a software update to address this vulnerability. Customers should upgrade to version 1.2.0 or later. For those who do not require the SSH service, it can be disabled using the ssh-server disable CLI command or by unchecking the SSH checkbox on the Misc Settings page in the web UI.