Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability
Summary
A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit this vulnerability by initiating a denial of service (DoS) attack against the SSH port. A successful exploit could allow the attacker to cause the SSH service to be unresponsive during the period of the DoS attack. All other operations remain stable during the attack. Cisco has released software updat…
- Scope: At the time of publication, this vulnerability affected Cisco IEC6400 Wireless Backhaul Edge Compute Software if it had the SSH service enabled. The SSH service is enabled by default.
- Release 1.1.0 and earlier (first fixed: 1.2.0)
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Mitigation checklist
- Upgrade to the first fixed release for your train per the Fixed Releases table in this advisory.
- Release 1.1.0 and earlier: upgrade to 1.2.0.
- There are no workarounds that address this vulnerability. However, as a mitigation, customers who do not require the SSH service can disable it either by using the ssh-server disable CLI command or by unchecking the SSH checkbox on the Misc Settings page in the web UI.
Official advisory · high-confidence parse· fetched 7 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.