BugZero | Cisco BugID CSCwh00045 - Cat9300 - LIIN telnet traffic blocked by login blo...

Cisco - Defect ID: CSCwh00045

Cat9300 - LIIN telnet traffic blocked by login block feature access-list sl_def_acl

Cisco - Defect ID: CSCwh00045

Cat9300 - LIIN telnet traffic blocked by login block feature access-list sl_def_acl

Last updated on 5/2/2025

Overall: 7.57.5

Severity: 8.28.2

Lifecycle: 5.25.2

Popularity: 4.64.6

What is the BugZero Risk Score?

Vendor details

No defect details.

Overall: 7.57.5

Severity: 8.28.2

Lifecycle: 5.25.2

Popularity: 4.64.6

What is the BugZero Risk Score?

Vendor details

No defect details.

Symptom

We can see the following error messages displayed in syslogs: Jul 18 2023 10:57:01.286 PDT: %SEC_LOGIN-1-QUIET_MODE_ON: Still timeleft for watching failures is 0 secs, [user: ] [Source: 192.168.1.5] [localport: 23] [Reason: Login Authentication Failed] [ACL: sl_def_acl] at 10:57:01 PDT Tue Jul 18 2023 Jul 18 2023 10:57:08.879 PDT: %SEC_LOGIN-4-LOGIN_FAILED: Login failed [user: ] [Source: 192.168.1.5] [localport: 23] [Reason: Login Authentication Failed] at 10:57:08 PDT Tue Jul 18 2023 TCP sessions fail to establish SW1_#sh ip ports all Proto Local Address Foreign Address State PID/Program Name TCB Local Address Foreign Address (state) tcp 192.168.1.6:23 192.168.1.5:48788 TIMEWAIT 0/[IOS] Unknown

Conditions

- 2 9300 switches in stack -The Cisco IOS Login Enhancements (Login Block) feature

Workaround

Remove The Cisco IOS Login Enhancements (Login Block) feature

Further Problem Description

All remote access is blocked and switch becomes unaccesible

Original Vendor Announcement

9.65Defect ID: CSCwd45843
Auth Step latency for policy evaluation due to Garbage Collection activity.
9.65Defect ID: CSCwa92734
CUBE DTMF interworking fails from rtp-nte to OOB SIP methods
9.65Defect ID: CSCwj45822
Cisco ASA and FTD Software Remote Access VPN Brute Force Denial of Service Vulnerability
9.65Defect ID: CSCvo03458
PKI "revocation check crl none" does not fallback if CRL not reachable
9.65Defect ID: CSCvq05584
Cisco IOS and IOS XE Software Tcl Arbitrary Code Execution Vulnerability

Ready to prevent the next vendor outage?

Get a demo

OPERATIONAL DEFECT DATABASE

Cisco - Defect ID: CSCwh00045

Cat9300 - LIIN telnet traffic blocked by login block feature access-list sl_def_acl

Cisco - Defect ID: CSCwh00045

Cat9300 - LIIN telnet traffic blocked by login block feature access-list sl_def_acl

Last updated on 5/2/2025

Vendor details

Vendor details

Description

Symptom

Conditions

Workaround

Further Problem Description

Links

Top Cisco defects by risk score

Ready to prevent the next vendor outage?